cobaltstrike | bb14dfc5ce7bdfb224e5358af840f7a26c41002196ae54a778dbdce701c01541 | Triage

Sharing

General

Target

bb14dfc5ce7bdfb224e5358af840f7a26c41002196ae54a778dbdce701c01541
Size

85KB
Sample

231005-db7hysgc9y
MD5

332f157ccea5ce11c91ae8fa23225aac
SHA1

449844a23fee27244fc4122dd9def9fb0e89245f
SHA256

bb14dfc5ce7bdfb224e5358af840f7a26c41002196ae54a778dbdce701c01541
SHA512

0a0f9c15b49a8b4d15d575c82f4788e0dfbb9f985d5d84f74c081cc05272c7da37d8b55f4ef3746d41762e0861e7015efb1748acf9fce8926e320234ad359592
SSDEEP

1536:mYDFhV+lJXTimsKDUZzqHBAxRs+Ux1WwHYn:dJhV+vTimsKDUZzqks+sdHYn

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://10.0.0.129:4444/i8yC

Attributes

user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)

Targets

- Target
  
  bb14dfc5ce7bdfb224e5358af840f7a26c41002196ae54a778dbdce701c01541
- Size
  
  85KB
- MD5
  
  332f157ccea5ce11c91ae8fa23225aac
- SHA1
  
  449844a23fee27244fc4122dd9def9fb0e89245f
- SHA256
  
  bb14dfc5ce7bdfb224e5358af840f7a26c41002196ae54a778dbdce701c01541
- SHA512
  
  0a0f9c15b49a8b4d15d575c82f4788e0dfbb9f985d5d84f74c081cc05272c7da37d8b55f4ef3746d41762e0861e7015efb1748acf9fce8926e320234ad359592
- SSDEEP
  
  1536:mYDFhV+lJXTimsKDUZzqHBAxRs+Ux1WwHYn:dJhV+vTimsKDUZzqks+sdHYn
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan