cobaltstrike | 269397d0a3827960a1690c5c6469c73d64dc4e4072bc156c90b7c14ca1a939d0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

269397d0a3827960a1690c5c6469c73d64dc4e4072bc156c90b7c14ca1a939d0
Size

19KB
Sample

230822-2xw64sfh78
MD5

4ebc835fa287883e4f5726aa82726b41
SHA1

0b771688a7eafe3efbfea969eddaa12ca1f77ff9
SHA256

269397d0a3827960a1690c5c6469c73d64dc4e4072bc156c90b7c14ca1a939d0
SHA512

d2a9f888fc0abe95d5c7e2f3a4e41c7cc62eb68c168b0a22a373099d74507a644da0d1048a18385b8e4601b67146e1ecac04c90c5d96cff6698b4647dc333000
SSDEEP

192:12V7qaCF6Op1i2dobVXujRDcBaXWQjwOT/2kDUqNWW3WF8qa1Dojjgi:CqaCF31Dix+Dc4zjDUqNWWGFF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://119.45.118.204:443/zzxzz

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0)

Targets

- Target
  
  269397d0a3827960a1690c5c6469c73d64dc4e4072bc156c90b7c14ca1a939d0
- Size
  
  19KB
- MD5
  
  4ebc835fa287883e4f5726aa82726b41
- SHA1
  
  0b771688a7eafe3efbfea969eddaa12ca1f77ff9
- SHA256
  
  269397d0a3827960a1690c5c6469c73d64dc4e4072bc156c90b7c14ca1a939d0
- SHA512
  
  d2a9f888fc0abe95d5c7e2f3a4e41c7cc62eb68c168b0a22a373099d74507a644da0d1048a18385b8e4601b67146e1ecac04c90c5d96cff6698b4647dc333000
- SSDEEP
  
  192:12V7qaCF6Op1i2dobVXujRDcBaXWQjwOT/2kDUqNWW3WF8qa1Dojjgi:CqaCF31Dix+Dc4zjDUqNWWGFF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan