Overview

overview

10

Static

static

1

ecf539192f...10.dll

windows7-x64

1

ecf539192f...10.dll

windows10-2004-x64

10

Analysis

  • max time kernel
    142s
  • max time network
    161s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12/10/2023, 09:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ecf539192f18a8c20122a50b61d3cfcdfa27305f17ed6e33576c0060a224b310.dll

  • Size

    2.8MB

  • MD5

    a1e0fb50e442463d3276f8ce9f2e1b5d

  • SHA1

    090f9cabb30f895e1cfd4b24d5d84419da6c38d1

  • SHA256

    ecf539192f18a8c20122a50b61d3cfcdfa27305f17ed6e33576c0060a224b310

  • SHA512

    b793e4b8e543a50431f2f8112d9002a529fde7c64c78d711383e00f917ea5bc3b8c20db3b08a6ccd98bb4749d0c6d69a98a19723fd03923bc9dfe5ef28aa3bb4

  • SSDEEP

    49152:1uN2zdU3mrb/TTvO90d7HjmAFd4A64nsfJANLnDoB71oDH8hTSMai8gsEeD7iQVJ:cZ3gdjr

Score
10/10
cobaltstrikebackdoortrojan

Malware Config

Signatures

Processes

  • C:\Windows\system32\regsvr32.exe
    regsvr32 /s C:\Users\Admin\AppData\Local\Temp\ecf539192f18a8c20122a50b61d3cfcdfa27305f17ed6e33576c0060a224b310.dll
    1⤵
      PID:2140

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2140-0-0x00007FFB72940000-0x00007FFB729FE000-memory.dmp

      Filesize

      760KB

      Download

    • memory/2140-1-0x00007FFB70D80000-0x00007FFB71049000-memory.dmp

      Filesize

      2.8MB

      Download

    • memory/2140-2-0x00007FFB71480000-0x00007FFB7152C000-memory.dmp

      Filesize

      688KB

      Download

    • memory/2140-3-0x00007FFB73050000-0x00007FFB73245000-memory.dmp

      Filesize

      2.0MB

      Download

    • memory/2140-4-0x0000000027FC0000-0x0000000028004000-memory.dmp

      Filesize

      272KB

      Download

    • memory/2140-5-0x00007FFB557C0000-0x00007FFB55AF2000-memory.dmp

      Filesize

      3.2MB

      Download

    • memory/2140-8-0x00007FFB5B520000-0x00007FFB5B5AD000-memory.dmp

      Filesize

      564KB

      Download

    • memory/2140-10-0x00007FFB5B520000-0x00007FFB5B5AD000-memory.dmp

      Filesize

      564KB

      Download

    • memory/2140-13-0x0000000028800000-0x0000000028802000-memory.dmp

      Filesize

      8KB

      Download

    • memory/2140-15-0x00007FFB5B520000-0x00007FFB5B5AD000-memory.dmp

      Filesize

      564KB

      Download

    • memory/2140-16-0x00007FFB557C0000-0x00007FFB55AF2000-memory.dmp

      Filesize

      3.2MB

      Download

    • memory/2140-21-0x00007FFB5B520000-0x00007FFB5B5AD000-memory.dmp

      Filesize

      564KB

      Download

    • memory/2140-25-0x00007FFB5B520000-0x00007FFB5B5AD000-memory.dmp

      Filesize

      564KB

      Download

    • memory/2140-28-0x00007FFB557C0000-0x00007FFB55AF2000-memory.dmp

      Filesize

      3.2MB

      Download

    • memory/2140-31-0x00007FFB5B520000-0x00007FFB5B5AD000-memory.dmp

      Filesize

      564KB

      Download