General
-
Target
8f4b863934903ba4affff04b4b6578b32c510436cd7aa8a25dc1030a0744aba1
-
Size
9.0MB
-
Sample
240224-c2lhqsfe5v
-
MD5
dd345b396bce0f93096012aa13b9379e
-
SHA1
3759c6ed77c708c4ed4b0c962dc67c13dbae797f
-
SHA256
8f4b863934903ba4affff04b4b6578b32c510436cd7aa8a25dc1030a0744aba1
-
SHA512
354cd2d1fd52b4405ff5ef1a5885518652fb1d9837a0792cece8d727a8cf0f3bcd7657d40d29121cf1a92e8dbfa758119b7ce4637af2fecdc7ea7623dba585c5
-
SSDEEP
49152:BL5mUpeTdGWzbsaW809OPVZ559Exy2miymdKplo8Rtu0VaZAmQH083LWSNIEaZMw:re/h913mqyu
Static task
static1
Behavioral task
behavioral1
Sample
8f4b863934903ba4affff04b4b6578b32c510436cd7aa8a25dc1030a0744aba1.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
8f4b863934903ba4affff04b4b6578b32c510436cd7aa8a25dc1030a0744aba1.exe
Resource
win10v2004-20240221-en
Malware Config
Extracted
cobaltstrike
http://59.110.142.91:1145/PRFu
-
user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.2; .NET CLR 2.0.50727)
Targets
-
-
Target
8f4b863934903ba4affff04b4b6578b32c510436cd7aa8a25dc1030a0744aba1
-
Size
9.0MB
-
MD5
dd345b396bce0f93096012aa13b9379e
-
SHA1
3759c6ed77c708c4ed4b0c962dc67c13dbae797f
-
SHA256
8f4b863934903ba4affff04b4b6578b32c510436cd7aa8a25dc1030a0744aba1
-
SHA512
354cd2d1fd52b4405ff5ef1a5885518652fb1d9837a0792cece8d727a8cf0f3bcd7657d40d29121cf1a92e8dbfa758119b7ce4637af2fecdc7ea7623dba585c5
-
SSDEEP
49152:BL5mUpeTdGWzbsaW809OPVZ559Exy2miymdKplo8Rtu0VaZAmQH083LWSNIEaZMw:re/h913mqyu
Score10/10-
Executes dropped EXE
-