Overview

overview

10

Static

static

10

df9bb00f51...3a.exe

windows7-x64

10

df9bb00f51...3a.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    167s
  • max time network
    454s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03-12-2022 03:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    df9bb00f51f464c7e8b6a9c0603c44d099f4ec8112973be25e6137010416f63a.exe

  • Size

    307KB

  • MD5

    131c0d733cab5949f531b08820c2a480

  • SHA1

    63bbe529bd84f4581cf4ac15d1e68ac2b4827557

  • SHA256

    df9bb00f51f464c7e8b6a9c0603c44d099f4ec8112973be25e6137010416f63a

  • SHA512

    f2f518b7d695314f5cdcaecfe781af96647a93f51ba174286e948170ffe4e2fa4f37c374f1134431f11f42a6bdb500ebd38eaab95223747a597fb5995a32cc31

  • SSDEEP

    6144:HkSz8T72Y0SLzinYKTY1SQshfRPVQe1MZkIYSccr7wbstOnPECYeixlYGicb:HkqA7SSiYsY1UMqMZJYSN7wbstOn8fvp

Score
10/10
cobaltstrikebackdoortrojan

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\df9bb00f51f464c7e8b6a9c0603c44d099f4ec8112973be25e6137010416f63a.exe
    "C:\Users\Admin\AppData\Local\Temp\df9bb00f51f464c7e8b6a9c0603c44d099f4ec8112973be25e6137010416f63a.exe"
    1⤵
      PID:4936

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/4936-132-0x0000000000680000-0x00000000006D1000-memory.dmp
      Filesize

      324KB

      Download
    • memory/4936-133-0x0000000000680000-0x00000000006D1000-memory.dmp
      Filesize

      324KB

      Download
    • memory/4936-134-0x000000007F5A0000-0x000000007F5E4000-memory.dmp
      Filesize

      272KB

      Download