General

  • Target

    8f4b863934903ba4affff04b4b6578b32c510436cd7aa8a25dc1030a0744aba1

  • Size

    9.0MB

  • Sample

    240224-c2lhqsfe5v

  • MD5

    dd345b396bce0f93096012aa13b9379e

  • SHA1

    3759c6ed77c708c4ed4b0c962dc67c13dbae797f

  • SHA256

    8f4b863934903ba4affff04b4b6578b32c510436cd7aa8a25dc1030a0744aba1

  • SHA512

    354cd2d1fd52b4405ff5ef1a5885518652fb1d9837a0792cece8d727a8cf0f3bcd7657d40d29121cf1a92e8dbfa758119b7ce4637af2fecdc7ea7623dba585c5

  • SSDEEP

    49152:BL5mUpeTdGWzbsaW809OPVZ559Exy2miymdKplo8Rtu0VaZAmQH083LWSNIEaZMw:re/h913mqyu

Malware Config

Extracted

Family

cobaltstrike

C2

http://59.110.142.91:1145/PRFu

Attributes
  • user_agent

    User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.2; .NET CLR 2.0.50727)

Targets

    • Target

      8f4b863934903ba4affff04b4b6578b32c510436cd7aa8a25dc1030a0744aba1

    • Size

      9.0MB

    • MD5

      dd345b396bce0f93096012aa13b9379e

    • SHA1

      3759c6ed77c708c4ed4b0c962dc67c13dbae797f

    • SHA256

      8f4b863934903ba4affff04b4b6578b32c510436cd7aa8a25dc1030a0744aba1

    • SHA512

      354cd2d1fd52b4405ff5ef1a5885518652fb1d9837a0792cece8d727a8cf0f3bcd7657d40d29121cf1a92e8dbfa758119b7ce4637af2fecdc7ea7623dba585c5

    • SSDEEP

      49152:BL5mUpeTdGWzbsaW809OPVZ559Exy2miymdKplo8Rtu0VaZAmQH083LWSNIEaZMw:re/h913mqyu

MITRE ATT&CK Matrix

Tasks