Overview

overview

10

Static

static

10

89f7a6380d...db.exe

windows7-x64

10

89f7a6380d...db.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    142s
  • max time network
    156s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03-12-2022 02:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    89f7a6380da128ef25af7a3cd5d9b0240b96c2afefddee9d7c183de8146ca7db.exe

  • Size

    312KB

  • MD5

    c05cb0dd31005612e83654b475b82b6a

  • SHA1

    3ef53ec1547cd65dfda193a930a48ceab980a28c

  • SHA256

    89f7a6380da128ef25af7a3cd5d9b0240b96c2afefddee9d7c183de8146ca7db

  • SHA512

    673f121b6a80b7d61b160abfb68ab55d6457f37f19d022626ca184bb87c78b98f7fa85f98d016c516dbb1b3d21e61c9116d3f45af43c0b692020db2fe36f34f0

  • SSDEEP

    6144:xWI+jNXUeSFTCCRTy7wzFzRODpyUOr2//W2TnLo0DUb:EIQU1CCvxzKy1rc/Wsc

Score
10/10
cobaltstrikebackdoortrojan

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\89f7a6380da128ef25af7a3cd5d9b0240b96c2afefddee9d7c183de8146ca7db.exe
    "C:\Users\Admin\AppData\Local\Temp\89f7a6380da128ef25af7a3cd5d9b0240b96c2afefddee9d7c183de8146ca7db.exe"
    1⤵
      PID:3560

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/3560-132-0x00000000006C0000-0x0000000000711000-memory.dmp
      Filesize

      324KB

      Download
    • memory/3560-133-0x00000000006C0000-0x0000000000711000-memory.dmp
      Filesize

      324KB

      Download
    • memory/3560-134-0x000000007EE70000-0x000000007EEB4000-memory.dmp
      Filesize

      272KB

      Download