cobaltstrike | 2249d77258b4160abe894d892ef2cdeb3a712b23fe3bdb77e529b599eac0a848

General

Target

2249d77258b4160abe894d892ef2cdeb3a712b23fe3bdb77e529b599eac0a848
Size

200KB
Sample

231016-15979she93
MD5

a7ee619e99642e7008396b869be309e4
SHA1

42bebb69d06b0106d071155a7dff9fc1f8ab1297
SHA256

2249d77258b4160abe894d892ef2cdeb3a712b23fe3bdb77e529b599eac0a848
SHA512

0e821963772deed183e162288f36b784133eea5406a7d3d0f2a9dda3ac464062405a6d225ffe6b3eea6c3da7fd1dc46b28ee56f8abd0d515a04cbbcd4d772671
SSDEEP

3072:6GVC+cnlC+8CveVO29zuNuo0izyRzWOqyjEUeRS5Ng:SHnlP8Cvvwzu6ikWO9jGR

Score

10^/10

cobaltstrike 426352781

Malware Config

Extracted

Family

cobaltstrike

Botnet

426352781

Attributes

beacon_type
1024
host
192.168.93.131
http_header1
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==
http_header2
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==
polling_time
10000
port_number
4445
sc_process32
%windir%\syswow64\rundll32.exe
sc_process64
%windir%\sysnative\rundll32.exe
state_machine
MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCiwGoFaA8ziL27X3H/xd1lK383uK5VvD2XROY5345loTbrK11vyqGvb+/MVAVj6if32vbhLqmaoogkjbj7yeuL7WeEPt1gymNbW/w6iapyzHtx7A7Og/CBaeE1uNhiX1gl4fW0oN/8if9lcuaU+z4sXIh4NMazS13MurWOJFoY8wIDAQABAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==
unknown1
4096
unknown2
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==
watermark
426352781

Targets

- Target
  
  2249d77258b4160abe894d892ef2cdeb3a712b23fe3bdb77e529b599eac0a848
- Size
  
  200KB
- MD5
  
  a7ee619e99642e7008396b869be309e4
- SHA1
  
  42bebb69d06b0106d071155a7dff9fc1f8ab1297
- SHA256
  
  2249d77258b4160abe894d892ef2cdeb3a712b23fe3bdb77e529b599eac0a848
- SHA512
  
  0e821963772deed183e162288f36b784133eea5406a7d3d0f2a9dda3ac464062405a6d225ffe6b3eea6c3da7fd1dc46b28ee56f8abd0d515a04cbbcd4d772671
- SSDEEP
  
  3072:6GVC+cnlC+8CveVO29zuNuo0izyRzWOqyjEUeRS5Ng:SHnlP8Cvvwzu6ikWO9jGR
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2