cobaltstrike | 7a0948d244ac1fefdb55241ed4d9749ca6076d9d31ee448ce6faf40ec292bca1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7a0948d244ac1fefdb55241ed4d9749ca6076d9d31ee448ce6faf40ec292bca1
Size

19KB
Sample

230828-e3d66ahe8v
MD5

1dde21c643acd6a6a6eed79bc33a5d91
SHA1

567486b7d099f18d73ec1f97445576054bd8784b
SHA256

7a0948d244ac1fefdb55241ed4d9749ca6076d9d31ee448ce6faf40ec292bca1
SHA512

2f514b216f951f2372bcf81482dde8817260bddfa4c513e4e63d601c9cda0992c9d651f2dae28fab8f32c479444c475241597b71edd3969e86a79bb6b60d59ef
SSDEEP

192:VV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2+Vn6WF8qa1Dojjgi:3qaCF31cix+Dc4zjDjFF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://8.130.28.59:80/5Msh

Attributes

user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)

Targets

- Target
  
  7a0948d244ac1fefdb55241ed4d9749ca6076d9d31ee448ce6faf40ec292bca1
- Size
  
  19KB
- MD5
  
  1dde21c643acd6a6a6eed79bc33a5d91
- SHA1
  
  567486b7d099f18d73ec1f97445576054bd8784b
- SHA256
  
  7a0948d244ac1fefdb55241ed4d9749ca6076d9d31ee448ce6faf40ec292bca1
- SHA512
  
  2f514b216f951f2372bcf81482dde8817260bddfa4c513e4e63d601c9cda0992c9d651f2dae28fab8f32c479444c475241597b71edd3969e86a79bb6b60d59ef
- SSDEEP
  
  192:VV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2+Vn6WF8qa1Dojjgi:3qaCF31cix+Dc4zjDjFF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan