Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    PAYLOAD02.PS1

  • Size

    3KB

  • MD5

    21446c2bb89d8562d7ffa112beac5d11

  • SHA1

    d22ee80485f7acdaf15a637ffa85cd24a99bf406

  • SHA256

    42b00bc8a6e154487c56e7bdc246d8b62d05461c4c581f22ca19a0301f64dff9

  • SHA512

    63a75ae1c267e23752063f6df151a6033090c6ae1f293b813a617459cb314a98ba29789f63e783f49b56c21c305088f50a4e5a9774dfa5de8fd8bf553f0e4759

Score
10/10
cobaltstrike

Malware Config

Extracted

Family

cobaltstrike

C2

http://195.123.241.193:80/interpret/ct/YXNNJEPFEK8

Attributes
  • user_agent

    Accept: application/json, application/xhtml+xml, application/xml Accept-Language: fr-ca Accept-Encoding: *, br User-Agent: Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.139 Safari/537.36

Signatures

Files

  • PAYLOAD02.PS1
    .ps1