General
-
Target
1704-54-0x0000000000020000-0x0000000000025000-memory.dmp
-
Size
20KB
-
MD5
380ae6abf6004711d6d97ea7f801bb93
-
SHA1
efddf2382d0116ee703d87b3d6a114d66e5c6871
-
SHA256
cea67037216343f3e097882f9314f2a7efdb093ea8c5e146d1b4e7f37118adc3
-
SHA512
782f2a917d732371cfcc628d65c4aac8c1dfd156f1161035279615d73eb314dd3745c16f5e0ea22bc2ca69f2da1d3de38be950a6c91848b4dc7c86f7a3e8a922
-
SSDEEP
192:ct/UzUU916Tjxqm8Zp/tc0hGWnC/TU2kZUSWFVxbsuXu:38TIdtc0QUeTRrTVp7X
Score
10/10
Malware Config
Extracted
Family
cobaltstrike
C2
http://esfxe.com:4444/link/formal.mpeg
Attributes
-
user_agent
Host: esfxe.com Connection: close User-Agent: Mozilla/5.0 (Linux; Android 11; RMX2063) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.74 Mobile Safari/537.36
Signatures
-
Cobaltstrike family
Files
-
1704-54-0x0000000000020000-0x0000000000025000-memory.dmp