General

  • Target

    bff068e91b7d2ab70e102c8eb6e77549b9fb8d9631505cefc931ebf05d948141

  • Size

    1.2MB

  • Sample

    240223-ha44nacg6y

  • MD5

    f90a94c465400c3dc178ac0a1486d81a

  • SHA1

    ef9d47fed7c8f89026578b6306e2ed2685fd6329

  • SHA256

    bff068e91b7d2ab70e102c8eb6e77549b9fb8d9631505cefc931ebf05d948141

  • SHA512

    357ddb6f7c4b7d5ae1e68ffefd2f91f1b3c8a49fd265ed272237c08240447c2d967df2415656d31922af818eea4c3b438aae462f8bbe5b678094935d7e108e1b

  • SSDEEP

    12288:m3c1QfdDc0j7fT7djUxR5pIrc0OjQeF0k+OBM5hoooz39dL6t6iP9xRaFyRwdn19:I+mc0/u3h0wHiHRoWwXN2WalW

Score
10/10

Malware Config

Extracted

Family

cobaltstrike

C2

http://sev.anqjqirc.cc:443/Demo/blank/HY293MB1

Attributes
  • user_agent

    Accept: application/json, application/xhtml+xml, image/* Accept-Language: es-sv Accept-Encoding: identity, * User-Agent: Mozilla/5.0 (Windows NT 6.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36 Host: sev.anqjqirc.cc

Targets

    • Target

      bff068e91b7d2ab70e102c8eb6e77549b9fb8d9631505cefc931ebf05d948141

    • Size

      1.2MB

    • MD5

      f90a94c465400c3dc178ac0a1486d81a

    • SHA1

      ef9d47fed7c8f89026578b6306e2ed2685fd6329

    • SHA256

      bff068e91b7d2ab70e102c8eb6e77549b9fb8d9631505cefc931ebf05d948141

    • SHA512

      357ddb6f7c4b7d5ae1e68ffefd2f91f1b3c8a49fd265ed272237c08240447c2d967df2415656d31922af818eea4c3b438aae462f8bbe5b678094935d7e108e1b

    • SSDEEP

      12288:m3c1QfdDc0j7fT7djUxR5pIrc0OjQeF0k+OBM5hoooz39dL6t6iP9xRaFyRwdn19:I+mc0/u3h0wHiHRoWwXN2WalW

    Score
    1/10

MITRE ATT&CK Matrix

Tasks