cobaltstrike | 4e819cf81c8ecc8941afe7b31b3c0687fac9f5dc135be7b34d5348ee2f257a5b

General

Target

4e819cf81c8ecc8941afe7b31b3c0687fac9f5dc135be7b34d5348ee2f257a5b
Size

253KB
Sample

230922-pz9trshh77
MD5

38c864070ffab0b77bb3d7883c204fdf
SHA1

129977e19db189189b39e66dad9109e0871beca1
SHA256

4e819cf81c8ecc8941afe7b31b3c0687fac9f5dc135be7b34d5348ee2f257a5b
SHA512

d9ff4762f54fa451e0a230b836d80fad7033b3aff28c7cf63751e0863961464cdbb9bc49fd167ee99d7fa54d75a31127844fa28dd1fc027aefea050fc0c7cbf8
SSDEEP

3072:tVVK6EINn6uiwi3FPE/gpBItBJxrj15qSIT9AtxLE6FDLwa+Gx4YJcVMjkU1A:LVKwgcIpBItB/dqTGtDDh34CjB

Score

10^/10

cobaltstrike 100000

Malware Config

Extracted

Family

cobaltstrike

Botnet

100000

Attributes

beacon_type
1024
host
10.10.1.131
http_header1
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==
http_header2
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==
polling_time
10000
port_number
4445
sc_process32
%windir%\syswow64\rundll32.exe
sc_process64
%windir%\sysnative\rundll32.exe
state_machine
MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCo8vE5/CFBw/iA6zN54+tgDiaG9gUGMbjnDsrt1zBnv9LJ9nmLkDSoCM9S7B8o1oNRRZvE0uuieTNQsKmyV1gJirr88EtML1GV+oZXrQvwB55gByVImLFyvogMyQJdSI2f/O+jI24OmnXOPyofeUe2H7IqcEU2Xy6LmCNT0G9G+wIDAQABAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==
unknown1
4096
unknown2
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==
watermark
100000

Targets

- Target
  
  4e819cf81c8ecc8941afe7b31b3c0687fac9f5dc135be7b34d5348ee2f257a5b
- Size
  
  253KB
- MD5
  
  38c864070ffab0b77bb3d7883c204fdf
- SHA1
  
  129977e19db189189b39e66dad9109e0871beca1
- SHA256
  
  4e819cf81c8ecc8941afe7b31b3c0687fac9f5dc135be7b34d5348ee2f257a5b
- SHA512
  
  d9ff4762f54fa451e0a230b836d80fad7033b3aff28c7cf63751e0863961464cdbb9bc49fd167ee99d7fa54d75a31127844fa28dd1fc027aefea050fc0c7cbf8
- SSDEEP
  
  3072:tVVK6EINn6uiwi3FPE/gpBItBJxrj15qSIT9AtxLE6FDLwa+Gx4YJcVMjkU1A:LVKwgcIpBItB/dqTGtDDh34CjB
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2