Analysis
-
max time kernel
150s -
max time network
153s -
platform
windows10-2004_x64 -
resource
win10v2004-20230703-en -
resource tags
-
submitted
07/08/2023, 00:45
General
-
Target
48b5529d6395674e9bf3b45a2e8e94ce13eb586a079d63bb10a6a3dec01b9adf.exe
-
Size
5.2MB
-
MD5
d659d6fd677ee3606bf5bec73b1981bf
-
SHA1
b14c9c3887500301152b2aad52c0ccb49fc3d8e3
-
SHA256
48b5529d6395674e9bf3b45a2e8e94ce13eb586a079d63bb10a6a3dec01b9adf
-
SHA512
5d23bb2a6567cbe8e8ac2634aa78d792dc8eb8b03b556e3ef904a158406a7eceab3f4e01453f60b2bc69f86bd0da5fb6caa120fab6e465d8058b52efc6dade94
-
SSDEEP
49152:cCziBOY3QrWEDOSgrb/TqvO90d7HjmAFd4A64nsfJ+tkyb0cqGWlHSNKCLk4V+KJ:OJ3O3OobGlMHGtaz3NSsB
Score
10/10
Malware Config
Signatures
-
Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
-
Suspicious behavior: EnumeratesProcesses 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\48b5529d6395674e9bf3b45a2e8e94ce13eb586a079d63bb10a6a3dec01b9adf.exe"C:\Users\Admin\AppData\Local\Temp\48b5529d6395674e9bf3b45a2e8e94ce13eb586a079d63bb10a6a3dec01b9adf.exe"1⤵
- Suspicious behavior: EnumeratesProcesses
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
64KB
-
Filesize
4.0MB
-
Filesize
344KB
-
Filesize
64KB
-
Filesize
344KB