General
-
Target
793a4d83deea6fbe1657c1b0be59284bca9d60b343aa0b5da05217bc783a3311
-
Size
432KB
-
Sample
231013-qg9lqabh76
-
MD5
a84651486f648ce30e1f88b41783f23a
-
SHA1
ba96cd897b49c8c7ffb1b8b8039cc374c8c75ca6
-
SHA256
793a4d83deea6fbe1657c1b0be59284bca9d60b343aa0b5da05217bc783a3311
-
SHA512
862f040838592c347b41f1cfcb4d5e7a67ca1a7617f97bcac9aede748743cfcc1f137ca0d51b071dfbe6546ba87464d02ca18b8dd72640bfa74fab9ec852a977
-
SSDEEP
768:MMFV+DjQy8FQjXaoKxa4xUgbiij1X++++++++++++++++++++++++++++++++++N:M00L7Ktc4x9Rfy+3YVad1R
Malware Config
Extracted
cobaltstrike
http://116.198.34.83:7558/jquery-3.3.2.slim.min.js
-
user_agent
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.5 Referer: http://code.jquery.com/ Accept-Encoding: gzip, deflate User-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko
Targets
-
-
Target
793a4d83deea6fbe1657c1b0be59284bca9d60b343aa0b5da05217bc783a3311
-
Size
432KB
-
MD5
a84651486f648ce30e1f88b41783f23a
-
SHA1
ba96cd897b49c8c7ffb1b8b8039cc374c8c75ca6
-
SHA256
793a4d83deea6fbe1657c1b0be59284bca9d60b343aa0b5da05217bc783a3311
-
SHA512
862f040838592c347b41f1cfcb4d5e7a67ca1a7617f97bcac9aede748743cfcc1f137ca0d51b071dfbe6546ba87464d02ca18b8dd72640bfa74fab9ec852a977
-
SSDEEP
768:MMFV+DjQy8FQjXaoKxa4xUgbiij1X++++++++++++++++++++++++++++++++++N:M00L7Ktc4x9Rfy+3YVad1R
Score10/10-
Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
-