cobaltstrike | 7903e4ed5449a8ef689e3aa4456a4df20750fee09b3cf71f065b210cbd124051 | Triage

Sharing

General

Target

svchost.exe
Size

5.4MB
Sample

221207-h9rbvafd55
MD5

b64caff2a80efe84e68f102ced8a50db
SHA1

8755ec0e6256682c9288d021ce8904778f1b4ac0
SHA256

7903e4ed5449a8ef689e3aa4456a4df20750fee09b3cf71f065b210cbd124051
SHA512

46b718c01dbc2aa8972bbf69c9092c1016aac1ba60f26889dbc8b17c1ba21096a95dd7892fd7d5d471991c36a835e1c4c8c2bfd7c1d648b7cc56edcfa7796f49
SSDEEP

49152:ih6m+U3grb/TyvO90dL3BmAFd4A64nsfJ3pcp0QXD0izFsniKnMwWv0b2WE8fMko:ih6O0pI0QXOhnMFOavQKGb7HLmt2El

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Targets

- Target
  
  svchost.exe
- Size
  
  5.4MB
- MD5
  
  b64caff2a80efe84e68f102ced8a50db
- SHA1
  
  8755ec0e6256682c9288d021ce8904778f1b4ac0
- SHA256
  
  7903e4ed5449a8ef689e3aa4456a4df20750fee09b3cf71f065b210cbd124051
- SHA512
  
  46b718c01dbc2aa8972bbf69c9092c1016aac1ba60f26889dbc8b17c1ba21096a95dd7892fd7d5d471991c36a835e1c4c8c2bfd7c1d648b7cc56edcfa7796f49
- SSDEEP
  
  49152:ih6m+U3grb/TyvO90dL3BmAFd4A64nsfJ3pcp0QXD0izFsniKnMwWv0b2WE8fMko:ih6O0pI0QXOhnMFOavQKGb7HLmt2El
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2