cobaltstrike | 9bb6b4aeae05e870510fc2b0347069ed8a826e185371f0e54bee7d3b0dd54acb | Triage

Resubmissions

14/10/2023, 16:49

231014-vbza1sga9t 10

14/10/2023, 15:39

231014-s3lswsfh7v 10

Sharing

Copy URL Twitter E-mail

General

Target

9bb6b4aeae05e870510fc2b0347069ed8a826e185371f0e54bee7d3b0dd54acb
Size

19KB
Sample

231014-vbza1sga9t
MD5

6af1de3d6b7463d756f64ae1301c1e83
SHA1

d899bb7ec5948413581a526f32e433a7202f5069
SHA256

9bb6b4aeae05e870510fc2b0347069ed8a826e185371f0e54bee7d3b0dd54acb
SHA512

1a877c0ce3ef07ec9022af0d7cf79ff5618d7b66f5f5b086de033f0f808a98062fed376fedf645c9f6804da153bce134c9d1dc7829e1233614c0519e8de50e92
SSDEEP

192:JV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/27M9GWF8qa1Dojjgi:rqaCF31cix+Dc4zjqE3FF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://123.57.28.144:8089/KQvK

Attributes

user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.2; InfoPath.3)

Targets

- Target
  
  9bb6b4aeae05e870510fc2b0347069ed8a826e185371f0e54bee7d3b0dd54acb
- Size
  
  19KB
- MD5
  
  6af1de3d6b7463d756f64ae1301c1e83
- SHA1
  
  d899bb7ec5948413581a526f32e433a7202f5069
- SHA256
  
  9bb6b4aeae05e870510fc2b0347069ed8a826e185371f0e54bee7d3b0dd54acb
- SHA512
  
  1a877c0ce3ef07ec9022af0d7cf79ff5618d7b66f5f5b086de033f0f808a98062fed376fedf645c9f6804da153bce134c9d1dc7829e1233614c0519e8de50e92
- SSDEEP
  
  192:JV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/27M9GWF8qa1Dojjgi:rqaCF31cix+Dc4zjqE3FF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan