Overview

overview

10

Static

static

3

c4be32be42...71.exe

windows7-x64

10

c4be32be42...71.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c4be32be425b6caffbba3ee57b2d25dd738d6ad66242222cdbd72c32cdbf9b71

  • Size

    19KB

  • Sample

    231013-qg9lqabh77

  • MD5

    ccda217bec5ff4bee2e35d2b3674c295

  • SHA1

    7efea25758f4b32ad0d1e54a6975e3ad77498fb9

  • SHA256

    c4be32be425b6caffbba3ee57b2d25dd738d6ad66242222cdbd72c32cdbf9b71

  • SHA512

    479c3e4782a200963a4c996d8a431e70847ba4c571dc9bd2b9b21f5c65559d7516466e2a52c756a21def2ac6c22ffc6d1e381341e4795b1d5f11280b06399d5a

  • SSDEEP

    192:kV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2dEW2eWF8qa1Dojjgi:WqaCF31cix+Dc4zjQkFF46gi

Score
10/10
cobaltstrikebackdoortrojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://116.198.34.83:7558/jquery-3.3.2.slim.min.js

Attributes
  • user_agent

    Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.5 Referer: http://code.jquery.com/ Accept-Encoding: gzip, deflate User-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko

Targets

    • Target

      c4be32be425b6caffbba3ee57b2d25dd738d6ad66242222cdbd72c32cdbf9b71

    • Size

      19KB

    • MD5

      ccda217bec5ff4bee2e35d2b3674c295

    • SHA1

      7efea25758f4b32ad0d1e54a6975e3ad77498fb9

    • SHA256

      c4be32be425b6caffbba3ee57b2d25dd738d6ad66242222cdbd72c32cdbf9b71

    • SHA512

      479c3e4782a200963a4c996d8a431e70847ba4c571dc9bd2b9b21f5c65559d7516466e2a52c756a21def2ac6c22ffc6d1e381341e4795b1d5f11280b06399d5a

    • SSDEEP

      192:kV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2dEW2eWF8qa1Dojjgi:WqaCF31cix+Dc4zjQkFF46gi

    Score
    10/10
    cobaltstrikebackdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks