General
-
Target
4e819cf81c8ecc8941afe7b31b3c0687fac9f5dc135be7b34d5348ee2f257a5b
-
Size
253KB
-
Sample
231012-e98pcafc9v
-
MD5
38c864070ffab0b77bb3d7883c204fdf
-
SHA1
129977e19db189189b39e66dad9109e0871beca1
-
SHA256
4e819cf81c8ecc8941afe7b31b3c0687fac9f5dc135be7b34d5348ee2f257a5b
-
SHA512
d9ff4762f54fa451e0a230b836d80fad7033b3aff28c7cf63751e0863961464cdbb9bc49fd167ee99d7fa54d75a31127844fa28dd1fc027aefea050fc0c7cbf8
-
SSDEEP
3072:tVVK6EINn6uiwi3FPE/gpBItBJxrj15qSIT9AtxLE6FDLwa+Gx4YJcVMjkU1A:LVKwgcIpBItB/dqTGtDDh34CjB
Behavioral task
behavioral1
Sample
4e819cf81c8ecc8941afe7b31b3c0687fac9f5dc135be7b34d5348ee2f257a5b.dll
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
4e819cf81c8ecc8941afe7b31b3c0687fac9f5dc135be7b34d5348ee2f257a5b.dll
Resource
win10v2004-20230915-en
Malware Config
Extracted
cobaltstrike
100000
-
beacon_type
1024
-
host
10.10.1.131
-
http_header1
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==
-
http_header2
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==
-
polling_time
10000
-
port_number
4445
-
sc_process32
%windir%\syswow64\rundll32.exe
-
sc_process64
%windir%\sysnative\rundll32.exe
-
state_machine
MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCo8vE5/CFBw/iA6zN54+tgDiaG9gUGMbjnDsrt1zBnv9LJ9nmLkDSoCM9S7B8o1oNRRZvE0uuieTNQsKmyV1gJirr88EtML1GV+oZXrQvwB55gByVImLFyvogMyQJdSI2f/O+jI24OmnXOPyofeUe2H7IqcEU2Xy6LmCNT0G9G+wIDAQABAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==
-
unknown1
4096
-
unknown2
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==
-
watermark
100000
Targets
-
-
Target
4e819cf81c8ecc8941afe7b31b3c0687fac9f5dc135be7b34d5348ee2f257a5b
-
Size
253KB
-
MD5
38c864070ffab0b77bb3d7883c204fdf
-
SHA1
129977e19db189189b39e66dad9109e0871beca1
-
SHA256
4e819cf81c8ecc8941afe7b31b3c0687fac9f5dc135be7b34d5348ee2f257a5b
-
SHA512
d9ff4762f54fa451e0a230b836d80fad7033b3aff28c7cf63751e0863961464cdbb9bc49fd167ee99d7fa54d75a31127844fa28dd1fc027aefea050fc0c7cbf8
-
SSDEEP
3072:tVVK6EINn6uiwi3FPE/gpBItBJxrj15qSIT9AtxLE6FDLwa+Gx4YJcVMjkU1A:LVKwgcIpBItB/dqTGtDDh34CjB
Score1/10 -