cobaltstrike | 07fa142d6eda3d8a2cd56bd2a80db51340f4371428d3651021a189be9ecc5493 | Triage

Sharing

General

Target

07fa142d6eda3d8a2cd56bd2a80db51340f4371428d3651021a189be9ecc5493
Size

41KB
Sample

230902-yfb8tsfc9t
MD5

7696587c471c333444a9dcb0f81bd5c6
SHA1

9ef09c1ddf07af86929d22cc817328173a2fc025
SHA256

07fa142d6eda3d8a2cd56bd2a80db51340f4371428d3651021a189be9ecc5493
SHA512

5d05f3b74751a685d492faa72686d1ec3cedb1e30001a624c430e97e1721d988debc3925b874a0fb55cd638a18efb3f1703d3c2ba94319cb84b11337dd2c7b9d
SSDEEP

768:DBOZpWVJUNNua3RsFTcuvwpw49G7DetPG3pGHFJQUdW:MQJUjua3y9wS49G7SfQUd

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://123.207.213.191:80/b3rB

Attributes

user_agent
User-Agent: 25

Targets

- Target
  
  07fa142d6eda3d8a2cd56bd2a80db51340f4371428d3651021a189be9ecc5493
- Size
  
  41KB
- MD5
  
  7696587c471c333444a9dcb0f81bd5c6
- SHA1
  
  9ef09c1ddf07af86929d22cc817328173a2fc025
- SHA256
  
  07fa142d6eda3d8a2cd56bd2a80db51340f4371428d3651021a189be9ecc5493
- SHA512
  
  5d05f3b74751a685d492faa72686d1ec3cedb1e30001a624c430e97e1721d988debc3925b874a0fb55cd638a18efb3f1703d3c2ba94319cb84b11337dd2c7b9d
- SSDEEP
  
  768:DBOZpWVJUNNua3RsFTcuvwpw49G7DetPG3pGHFJQUdW:MQJUjua3y9wS49G7SfQUd
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan