General

  • Target

    6cff769578f12243686a2bd16a20ee8b7229baf6d2cba8cd214d357315308a94

  • Size

    5.1MB

  • Sample

    240224-c2sbaaef67

  • MD5

    d3d3afa59a744276adcc694c5d095ca8

  • SHA1

    3c7213085425d6c4313da9540eccb73a4b580b4f

  • SHA256

    6cff769578f12243686a2bd16a20ee8b7229baf6d2cba8cd214d357315308a94

  • SHA512

    024224950e212c35da423a6e7e6e4dffd565bb6b77ee7f812bb41673628f1b34c58dd559e43fdec689f4f084bdecedef2893209ae458064b1f94cae9edbf861d

  • SSDEEP

    49152:OQW6uDZu7RO+o9qGOl7ZpL/nlye2yePcC7/Rnu2hIL2dKbvfpjXKRE34EOHYZlkh:hK

Malware Config

Extracted

Family

cobaltstrike

C2

http://59.110.142.91:1145/PRFu

Attributes
  • user_agent

    User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.2; .NET CLR 2.0.50727)

Targets

    • Target

      6cff769578f12243686a2bd16a20ee8b7229baf6d2cba8cd214d357315308a94

    • Size

      5.1MB

    • MD5

      d3d3afa59a744276adcc694c5d095ca8

    • SHA1

      3c7213085425d6c4313da9540eccb73a4b580b4f

    • SHA256

      6cff769578f12243686a2bd16a20ee8b7229baf6d2cba8cd214d357315308a94

    • SHA512

      024224950e212c35da423a6e7e6e4dffd565bb6b77ee7f812bb41673628f1b34c58dd559e43fdec689f4f084bdecedef2893209ae458064b1f94cae9edbf861d

    • SSDEEP

      49152:OQW6uDZu7RO+o9qGOl7ZpL/nlye2yePcC7/Rnu2hIL2dKbvfpjXKRE34EOHYZlkh:hK

MITRE ATT&CK Matrix

Tasks