General

  • Target

    tmp

  • Size

    153KB

  • Sample

    230323-21975scg31

  • MD5

    1169d488346b8de569e52cb184b9131e

  • SHA1

    e8cc0000b323d65d2a61d8d3d3e0a006ea7a63b3

  • SHA256

    fb73d38fe273961e0bfb618ed21b9150f250fadf093118f247925692619547cb

  • SHA512

    79f1b2d1e0c1b7e4bd3673d030d014432c1c788e8c0f90f711d2bfec1e71224e38de8fe09028fb19219467aa816fef8e56e7f8ea17e64cc34e73ce403db85042

  • SSDEEP

    3072:+4Ri4MxDERjtKurTmlwJ6V9DwiulUAZRdVU1cmuT:JRYxgnKwQwJ2DtuaklT

Malware Config

Extracted

Family

cobaltstrike

C2

http://naporiz.com:443/image-directory/admin.gif

Attributes
  • user_agent

    Host: taobao.com Connection: close Accept: */* Accept-Language: fr-CH, fr;q=0.9, en;q=0.8, de;q=0.7, *;q=0.5 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_2) AppleWebKit/601.3.9 (KHTML, like Gecko) Version/9.0.2 Safari/601.3.9

Targets

    • Target

      tmp

    • Size

      153KB

    • MD5

      1169d488346b8de569e52cb184b9131e

    • SHA1

      e8cc0000b323d65d2a61d8d3d3e0a006ea7a63b3

    • SHA256

      fb73d38fe273961e0bfb618ed21b9150f250fadf093118f247925692619547cb

    • SHA512

      79f1b2d1e0c1b7e4bd3673d030d014432c1c788e8c0f90f711d2bfec1e71224e38de8fe09028fb19219467aa816fef8e56e7f8ea17e64cc34e73ce403db85042

    • SSDEEP

      3072:+4Ri4MxDERjtKurTmlwJ6V9DwiulUAZRdVU1cmuT:JRYxgnKwQwJ2DtuaklT

MITRE ATT&CK Matrix

Tasks