Overview

overview

10

Static

static

10

ce8b1bfb27...6a.exe

windows7-x64

10

ce8b1bfb27...6a.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    113s
  • max time network
    128s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23-11-2022 09:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ce8b1bfb27cca00ae64bf67eee530246b051720b813eece44d44142ad7af496a.exe

  • Size

    315KB

  • MD5

    c1fdb29d387b95f2aee8caf860b22d18

  • SHA1

    c6214f1ce162a0e84aac0ce606b60238922253b3

  • SHA256

    ce8b1bfb27cca00ae64bf67eee530246b051720b813eece44d44142ad7af496a

  • SHA512

    304bf75cbfb6e8d8a86112b0ac738fb8f61725be68110d9c08e2e186fe4b6179410a1acc6f9e74139dab2ff65fb243c9fb256854fbf387b6d80c34b54b776281

  • SSDEEP

    6144:Hq3gCB82oqWYHtSLYnI+tnYDcMbY4FmNzNwm+MhUaOxO1BcC1cF:Hq3Fz1NDnI+1Kb5KzNVN/PcnF

Score
10/10
cobaltstrikebackdoortrojan

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\ce8b1bfb27cca00ae64bf67eee530246b051720b813eece44d44142ad7af496a.exe
    "C:\Users\Admin\AppData\Local\Temp\ce8b1bfb27cca00ae64bf67eee530246b051720b813eece44d44142ad7af496a.exe"
    1⤵
      PID:1400

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1400-132-0x0000000000A90000-0x0000000000AEB000-memory.dmp

      Filesize

      364KB

      Download

    • memory/1400-133-0x000000007F610000-0x000000007F654000-memory.dmp

      Filesize

      272KB

      Download

    • memory/1400-134-0x0000000000A90000-0x0000000000AEB000-memory.dmp

      Filesize

      364KB

      Download

    • memory/1400-135-0x000000007F610000-0x000000007F654000-memory.dmp

      Filesize

      272KB

      Download