cobaltstrike | 34afeb5565029cb283e7b21ca5e7f36ecc128167719ac2942f918bf534fb9a5e | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

34afeb5565...5e.exe

windows7-x64

34afeb5565...5e.exe

windows10-2004-x64

Sharing

General

Target

34afeb5565029cb283e7b21ca5e7f36ecc128167719ac2942f918bf534fb9a5e
Size

19KB
Sample

240115-d2xrfageek
MD5

97f8a468d1510454500d6cb1165e65f5
SHA1

1d5e35185c209c40e75275dcc06a3520cea16ed1
SHA256

34afeb5565029cb283e7b21ca5e7f36ecc128167719ac2942f918bf534fb9a5e
SHA512

d0987ea3bbe299bb781fe2150ad4bbdb5ffc885379708b114c81630610b683c302ef7a5c18ec574566da2b9cb22179a8936b861a5918bf2baa8a1ac66bf9e44b
SSDEEP

192:tV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2gDJa4WF8qa1Dojjgi:fqaCF31cix+Dc4zjlMNFF46gi

Score

10^/10

cobaltstrike backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

34afeb5565029cb283e7b21ca5e7f36ecc128167719ac2942f918bf534fb9a5e.exe

Resource

win7-20231215-en

cobaltstrike backdoor trojan

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

34afeb5565029cb283e7b21ca5e7f36ecc128167719ac2942f918bf534fb9a5e.exe

Resource

win10v2004-20231215-en

cobaltstrike backdoor trojan

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Extracted

Family

cobaltstrike

C2

http://192.168.10.131:80/3Ohs

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0; Avant Browser)

Targets

- Target
  
  34afeb5565029cb283e7b21ca5e7f36ecc128167719ac2942f918bf534fb9a5e
- Size
  
  19KB
- MD5
  
  97f8a468d1510454500d6cb1165e65f5
- SHA1
  
  1d5e35185c209c40e75275dcc06a3520cea16ed1
- SHA256
  
  34afeb5565029cb283e7b21ca5e7f36ecc128167719ac2942f918bf534fb9a5e
- SHA512
  
  d0987ea3bbe299bb781fe2150ad4bbdb5ffc885379708b114c81630610b683c302ef7a5c18ec574566da2b9cb22179a8936b861a5918bf2baa8a1ac66bf9e44b
- SSDEEP
  
  192:tV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2gDJa4WF8qa1Dojjgi:fqaCF31cix+Dc4zjlMNFF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.