Overview

overview

10

Static

static

10

a87ff3dc62...50.dll

windows7-x64

1

a87ff3dc62...50.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a87ff3dc623d6bd581540d5c9785d79d6eb2943831b27685800d804b68c4df50

  • Size

    253KB

  • Sample

    231019-nd1tasha25

  • MD5

    56e652bcf7e92157e73331a69fb08382

  • SHA1

    1636b7448bf14012c5daa5f9aaaeb84eedc41401

  • SHA256

    a87ff3dc623d6bd581540d5c9785d79d6eb2943831b27685800d804b68c4df50

  • SHA512

    783eb66c0a22545affa5a86ca7447a94ae26167f5af539e4a050b86448fadd1bb13f3ea8ab653b307f156598badb3fdf7183b13b9ed8f366c64f267b719783cf

  • SSDEEP

    3072:tVVK6EINn6uiwi3FPE/gpRItBJxrj15qSIT9AtxLE6FDLwaQoGx4YJcVMjkwA:LVKwgcIpRItB/dqTGtDDhS4Cj1

Score
10/10
cobaltstrike666666

Malware Config

Extracted

Family

cobaltstrike

Botnet

666666

Attributes
  • beacon_type

    1024

  • host

    192.168.0.9

  • http_header1

    AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==

  • http_header2

    AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==

  • polling_time

    10000

  • port_number

    11112

  • sc_process32

    %windir%\syswow64\rundll32.exe

  • sc_process64

    %windir%\sysnative\rundll32.exe

  • state_machine

    MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDRfI3rIV0bBi7OV1i1JkzHYc8Hf6E84Ar1jTpuLO1YlqpcSZWZl7BHFhTeiHmtXFGtKs5Ci0fZFtBZKApsWOmJfg/w/LJ6PL8KugnwRZFwiVQftrANRCyxV/sTM3Has//d7US76wjkrkjjZXw7UauZE/TEY19Mt1SDLpnj+pn+xwIDAQABAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==

  • unknown1

    4096

  • unknown2

    AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==

  • watermark

    666666

Targets

    • Target

      a87ff3dc623d6bd581540d5c9785d79d6eb2943831b27685800d804b68c4df50

    • Size

      253KB

    • MD5

      56e652bcf7e92157e73331a69fb08382

    • SHA1

      1636b7448bf14012c5daa5f9aaaeb84eedc41401

    • SHA256

      a87ff3dc623d6bd581540d5c9785d79d6eb2943831b27685800d804b68c4df50

    • SHA512

      783eb66c0a22545affa5a86ca7447a94ae26167f5af539e4a050b86448fadd1bb13f3ea8ab653b307f156598badb3fdf7183b13b9ed8f366c64f267b719783cf

    • SSDEEP

      3072:tVVK6EINn6uiwi3FPE/gpRItBJxrj15qSIT9AtxLE6FDLwaQoGx4YJcVMjkwA:LVKwgcIpRItB/dqTGtDDhS4Cj1

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks