Overview

overview

10

Static

static

10

82fdcc2a89...c1.dll

windows7-x64

1

82fdcc2a89...c1.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    82fdcc2a899f2dc16d475ea571436f4c70e9a030474f750d036c36483d3793c1

  • Size

    7KB

  • MD5

    1d7c48d8104a261e423e41cb16ddc780

  • SHA1

    020f8830c6b665f99fba57a44ddbc0afe4dc824c

  • SHA256

    82fdcc2a899f2dc16d475ea571436f4c70e9a030474f750d036c36483d3793c1

  • SHA512

    72891efcf220a144ed22c788115408f98ed03d66a2b64eeb6444b4c681fd122a668dad847e63e16f64a37f0d1d656c4bebbf4a40696bc3355cdfa60ccb4b0c20

  • SSDEEP

    96:Q7lNy/3y8zLtUqlM7PjkHaH8UP5VpPaBsPL0lCjleIY+4ypupMtvnCCQ:QMBlYgHaH8UPpPaBq4UleINnpgMtP

Score
10/10
cobaltstrike

Malware Config

Extracted

Family

cobaltstrike

C2

http://1.15.247.249:8088/Du9k

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0; MASP)

Signatures

  • Cobaltstrike family
    cobaltstrike
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 82fdcc2a899f2dc16d475ea571436f4c70e9a030474f750d036c36483d3793c1
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections