cobaltstrike | 1b0045393a9e4ad2012240c99e42efb91cd04678fc5be08c2ccf67bd01d9afb4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b0045393a9e4ad2012240c99e42efb91cd04678fc5be08c2ccf67bd01d9afb4
Size

41KB
Sample

230804-llx19sad35
MD5

495839733e598d4db9234cd95b2ad26a
SHA1

91d89e6435f9e8dcf197fa36a7639da08e82e638
SHA256

1b0045393a9e4ad2012240c99e42efb91cd04678fc5be08c2ccf67bd01d9afb4
SHA512

84cd157a7b0fc9b816d9963af7de05b6502037d44bcb4ece3b42d9e3c75145e1dd2b7ef35dd73a624897167a00e37d9acdcf507eea0b8207e22826d860aa87f4
SSDEEP

768:e65FDgEwrFzME3E9+S805A3T6eJGmj5uZ:eYMjM7Q30wTDnq

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://192.168.85.129:80/vVGJ

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; WOW64; Trident/6.0; BOIE9;ENUS)

Targets

- Target
  
  1b0045393a9e4ad2012240c99e42efb91cd04678fc5be08c2ccf67bd01d9afb4
- Size
  
  41KB
- MD5
  
  495839733e598d4db9234cd95b2ad26a
- SHA1
  
  91d89e6435f9e8dcf197fa36a7639da08e82e638
- SHA256
  
  1b0045393a9e4ad2012240c99e42efb91cd04678fc5be08c2ccf67bd01d9afb4
- SHA512
  
  84cd157a7b0fc9b816d9963af7de05b6502037d44bcb4ece3b42d9e3c75145e1dd2b7ef35dd73a624897167a00e37d9acdcf507eea0b8207e22826d860aa87f4
- SSDEEP
  
  768:e65FDgEwrFzME3E9+S805A3T6eJGmj5uZ:eYMjM7Q30wTDnq
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan