General

  • Target

    65086936f877e647c8f01496b7b54abcdd8a8bc8ef8dbbf80a6771001cdc0e8c

  • Size

    6KB

  • MD5

    f648ef439e3ef1851acd754716cef2a6

  • SHA1

    75625d7a1935f8065a25ae75dab6617b0604b709

  • SHA256

    65086936f877e647c8f01496b7b54abcdd8a8bc8ef8dbbf80a6771001cdc0e8c

  • SHA512

    5866efe71a4681c9f6ca464e72d0bf49c7a1ff18467f0df9f955beca6c0cd45462705795d11caf1eb9ae9e503ff427686a57490df8de9780ef2c9bd51ad6fa60

  • SSDEEP

    96:E7mNMWHMSLUT012/4CaADwNdZmMlTQP3ukq5vrcSepEAJqx:EIMkOaZzmMtQWfxcSQs

Score
10/10

Malware Config

Extracted

Family

cobaltstrike

C2

http://service-mxd9ixv3-1255936572.sh.apigw.tencentcs.com:443/logo64x64.gif

Attributes
  • user_agent

    Accept: text/html,application/xml;*/*; Accept-Encoding: gzip, deflate User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 11_0 like Mac OS X) AppleWebKit/604.1.38 Host: service-mxd9ixv3-1255936572.sh.apigw.tencentcs.com

Signatures

  • Cobaltstrike family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 65086936f877e647c8f01496b7b54abcdd8a8bc8ef8dbbf80a6771001cdc0e8c
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections