cobaltstrike | c1b8e515400863c87d176cc94b382335f903ac6aca5ad52a6524478d0a70e912 | Triage

Submit
Reports

Overview

overview

Static

static

c1b8e51540...12.dll

windows7-x64

c1b8e51540...12.dll

windows10-2004-x64

Analysis

max time kernel
139s
max time network
157s
platform
windows10-2004_x64
resource
win10v2004-20230915-en
resource tags

arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
submitted
19/09/2023, 00:53

Sharing

Copy URL Twitter E-mail

Static task

static1

391144938 cobaltstrike

2 signatures

Behavioral task

behavioral1

Sample

c1b8e515400863c87d176cc94b382335f903ac6aca5ad52a6524478d0a70e912.dll

Resource

win7-20230831-en

cobaltstrike 0 backdoor trojan

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

c1b8e515400863c87d176cc94b382335f903ac6aca5ad52a6524478d0a70e912.dll

Resource

win10v2004-20230915-en

cobaltstrike 0 backdoor trojan

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

c1b8e515400863c87d176cc94b382335f903ac6aca5ad52a6524478d0a70e912.dll
Size

270KB
MD5

ee79111b67b978a9d6736d7bd9ef318f
SHA1

315deb8707e93f3144280d2cb747a1567af4c98c
SHA256

c1b8e515400863c87d176cc94b382335f903ac6aca5ad52a6524478d0a70e912
SHA512

5ac8e09dbdc5e7fe8b219cf967020dc7c04a2c246d21f136a0f4488a8ede56fccd7cab747b0ea883a59c6eaa99166492b743315645024b9b4135286b7c9f66ce
SSDEEP

3072:rzbINhWl+CIbfqqEVxtfg8jtfDCJS4l9JTFyG+JteEzCnL7z8+GIkfhUYJF6vzHN:rzbUWootfDCvT4ZTXzCLUVIk5UDZrKM

Score

10^/10

cobaltstrike 0 backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

Botnet

0

Attributes

watermark
0

Signatures

Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
trojan backdoor cobaltstrike

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\c1b8e515400863c87d176cc94b382335f903ac6aca5ad52a6524478d0a70e912.dll,#1
1⤵
PID:1924

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1924-0-0x00000240C4690000-0x00000240C46E2000-memory.dmp

Filesize
328KB

Download

© 2018-2025

Terms | Privacy