General
-
Target
6b38527c5bfe7e6b51cf13976a5cebee1a3a718c7a0af32b321bdd0137174c30
-
Size
6KB
-
MD5
8300359a6ac5551fb130f7b6bb7f966d
-
SHA1
fb68f9fabd76606857c56831c5464e7827c8bf16
-
SHA256
6b38527c5bfe7e6b51cf13976a5cebee1a3a718c7a0af32b321bdd0137174c30
-
SHA512
6e99fe8c3712bd6583194a5c5c18301f1c2e7ec019b06bac4dbe56e639185cd182cec224338f36e36cf9a62ef534f5226e979d7f74a90109ff813b02a081a68e
-
SSDEEP
96:Ad7mNMWHMSLUT002/4tI21qugzLiOkTQP3ukq5vucSepUwS:cIMl2AZELivQWf0cSQW
Malware Config
Extracted
cobaltstrike
http://service-mxd9ixv3-1255936572.sh.apigw.tencentcs.com:443/logo64x64.gif
-
user_agent
Accept: text/html,application/xml;*/*; Accept-Encoding: gzip, deflate User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 11_0 like Mac OS X) AppleWebKit/604.1.38 Host: service-mxd9ixv3-1255936572.sh.apigw.tencentcs.com
Signatures
-
Cobaltstrike family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
6b38527c5bfe7e6b51cf13976a5cebee1a3a718c7a0af32b321bdd0137174c30
dae02f32a21e03ce65412f6e56942daa
Headers
Imports
Sections