General
-
Target
cb6361f696b574e035b54a8add82878014707fb346002fecab80895751bae39f
-
Size
7KB
-
MD5
08faf0cd2766a299b48a8270da221c75
-
SHA1
c5b46664523d165bcaa360c720b8f4c4f2b794db
-
SHA256
cb6361f696b574e035b54a8add82878014707fb346002fecab80895751bae39f
-
SHA512
660175b7bf0227d9113b322e6374149e9a80f57d4cdc6569ab1c05e4604ff541401a052fe842241d649e812fd5993c2f978c31c51bd3c1ad5c3d91472bf806f4
-
SSDEEP
96:C7lNy/3y8zLtUqlMPKM3f7sRuGRVpPaBcUgPL0lCjlelY+4ypupMtyqZSh:CMBl63QpPaB24UlelNnpgMCh
Score
10/10
Malware Config
Extracted
Family
cobaltstrike
C2
http://1.15.247.249:8088/Du9k
Attributes
-
user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0; MASP)
Signatures
-
Cobaltstrike family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
cb6361f696b574e035b54a8add82878014707fb346002fecab80895751bae39f
dae02f32a21e03ce65412f6e56942daa
Headers
Imports
Sections