Overview

overview

10

Static

static

payload.dll

windows7-x64

10

payload.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    payload.dll.exe

  • Size

    652KB

  • Sample

    221202-kz3m8sfc8v

  • MD5

    a07d575b289ed3a80357c789fa485f14

  • SHA1

    048acf120fa7a468a0275212b0a1f32ab8e441c2

  • SHA256

    5c09c4175f49c749bf225f84236538086f5b9f1ad8522531fca34739246e4ad9

  • SHA512

    15ef8e78e87dcea54f104f1ee1f005f78343a9b1e0ea941b421e3183da5136c6f158f05961b3016ed8fe485abac9fbfabc6e496a7e791913c672ef03839f842c

  • SSDEEP

    12288:sRcFR26XFHnPGvjihyc3EdnDzxT0hyDEUiKVTOg4KOrrRSGCMNNlwd:sRMBnPGvjih50nDFTXOKV6WsRSqwd

Score
10/10
cobaltstrikeflawedgraceratbackdoorloaderrattrojan

Malware Config

Targets

    • Target

      payload.dll.exe

    • Size

      652KB

    • MD5

      a07d575b289ed3a80357c789fa485f14

    • SHA1

      048acf120fa7a468a0275212b0a1f32ab8e441c2

    • SHA256

      5c09c4175f49c749bf225f84236538086f5b9f1ad8522531fca34739246e4ad9

    • SHA512

      15ef8e78e87dcea54f104f1ee1f005f78343a9b1e0ea941b421e3183da5136c6f158f05961b3016ed8fe485abac9fbfabc6e496a7e791913c672ef03839f842c

    • SSDEEP

      12288:sRcFR26XFHnPGvjihyc3EdnDzxT0hyDEUiKVTOg4KOrrRSGCMNNlwd:sRMBnPGvjih50nDFTXOKV6WsRSqwd

    Score
    10/10
    cobaltstrikeflawedgraceratbackdoorloaderrattrojan

    • Cobaltstrike

      Detected malicious payload which is part of Cobaltstrike.

      trojanbackdoorcobaltstrike

    • FlawedGraceRAT

      FlawedGrace is a full-featured RAT written in C++.

      ratflawedgracerat

    • FlawedGraceRat Loader

      Detects FlawedGraceRat x64 loader in memory.

      loader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks