Overview

overview

10

Static

static

10

payload.exe

windows7-x64

10

payload.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    payload.exe

  • Size

    1KB

  • MD5

    34215e137f8f4814d077fe78d42b7191

  • SHA1

    688d18638d10777d511274251da41d4d895d69c7

  • SHA256

    e332a224f597bbea153f482cf4d1cb4f66a523a90a2e8d83a8346bc27723ef85

  • SHA512

    b979f90ef2ca8425becb29deb798b84df3ec6eae00739d0db2907a524011968b07bb5aace1d445b1a1ac27041c8f66ec020aa1f8b0c3dc3d20a1defd9675bca6

Score
10/10
cobaltstrike

Malware Config

Extracted

Family

cobaltstrike

C2

http://192.168.112.128:1337/NOqO

Attributes
  • user_agent

    User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.2)

Signatures

Files

  • payload.exe
    .exe windows x64


    Headers

    Sections