Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1792540x00000000284500000.dmp

  • Size

    1.0MB

  • MD5

    e549cb215404e196c04d150ed59b9db7

  • SHA1

    acd8430931f99eea37610fa0f99f21d92eda1787

  • SHA256

    d1495652c4be430b2a369480c242e76ee9ca3a5b32684a2085cc4a91c473846f

  • SHA512

    51374e4529cbb7e9dee4972a8d24229d2087b1062f2b0425773893be4867bf88359726a682899523699a4b71f3aa3c72f67321a09815084c0fb53d3deef3de93

  • SSDEEP

    24:fapq9Kkmp5WPRqtl65zv1Dw45qshMoSl60ZwGEL+:fR9S5NtCvBp7qTg0ePL+

Score
10/10
cobaltstrike

Malware Config

Extracted

Family

cobaltstrike

C2

http://api.kingame.top:443/sfviwtxn

Attributes
  • user_agent

    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.3; .NET4.0C; .NET4.0E) QQBrowser/6.9.11079.201 Host: api.kingame.top

Signatures

Files

  • 1792540x00000000284500000.dmp