cobaltstrike | f4cc53f5c926e15717b254381559babee146961fc7f9d1a8da93c8e80a1915b6 | Triage

Sharing

General

Target

f4cc53f5c926e15717b254381559babee146961fc7f9d1a8da93c8e80a1915b6
Size

19KB
Sample

230828-skbj7sfa6w
MD5

77bf2dc60ca894120b6e4fbafaca2c09
SHA1

61571fe88f21bde9139f050094a091e5d157daf1
SHA256

f4cc53f5c926e15717b254381559babee146961fc7f9d1a8da93c8e80a1915b6
SHA512

0b26c967e7f3332d7d110a5c6d07657a361de0fc5937c9aa664ecce51fb58574f6b602675ece0fd7c173b6a21d2398c4f7fc9c073007ade759b9d6abb01a2a04
SSDEEP

192:sV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2HgZWF8qa1Dojjgi:OqaCF31cix+Dc4zj6FF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://81.68.130.209:80/GjaK

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; WOW64; Trident/6.0; MASAJS)

Targets

- Target
  
  f4cc53f5c926e15717b254381559babee146961fc7f9d1a8da93c8e80a1915b6
- Size
  
  19KB
- MD5
  
  77bf2dc60ca894120b6e4fbafaca2c09
- SHA1
  
  61571fe88f21bde9139f050094a091e5d157daf1
- SHA256
  
  f4cc53f5c926e15717b254381559babee146961fc7f9d1a8da93c8e80a1915b6
- SHA512
  
  0b26c967e7f3332d7d110a5c6d07657a361de0fc5937c9aa664ecce51fb58574f6b602675ece0fd7c173b6a21d2398c4f7fc9c073007ade759b9d6abb01a2a04
- SSDEEP
  
  192:sV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2HgZWF8qa1Dojjgi:OqaCF31cix+Dc4zj6FF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan