General

  • Target

    a1b03b2b3f7067e70d8f31e6c0f8e583

  • Size

    2.5MB

  • Sample

    240224-mznv7ahf92

  • MD5

    a1b03b2b3f7067e70d8f31e6c0f8e583

  • SHA1

    37e9e6b4c4563c60b067eca6a59a3dd990c354b3

  • SHA256

    3f043dec79ab2f566cf6701b39cf720a4302a5e8de21aab6d67111feef2325a8

  • SHA512

    a290bb402e6b4b8740baadfe1cf8d41f57db5270f6dd7dc408fd2ee93ef530c70ff59d278073c7a0e10f95cad7a0cce4ff940ccca77f302eabbfef5bf3f954ca

  • SSDEEP

    24576:KcndyGBA7qz0Ff9XaWSUqQztCEvOW9UpH/8X06Bhgq16:6G8I0Ff9XaWLqQzt6x8kGhgq1

Malware Config

Extracted

Family

cobaltstrike

C2

http://122.9.157.122:800/yz73

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; qdesk 2.4.1263.203; Windows NT 6.1; WOW64; Trident/5.0)

Targets

    • Target

      a1b03b2b3f7067e70d8f31e6c0f8e583

    • Size

      2.5MB

    • MD5

      a1b03b2b3f7067e70d8f31e6c0f8e583

    • SHA1

      37e9e6b4c4563c60b067eca6a59a3dd990c354b3

    • SHA256

      3f043dec79ab2f566cf6701b39cf720a4302a5e8de21aab6d67111feef2325a8

    • SHA512

      a290bb402e6b4b8740baadfe1cf8d41f57db5270f6dd7dc408fd2ee93ef530c70ff59d278073c7a0e10f95cad7a0cce4ff940ccca77f302eabbfef5bf3f954ca

    • SSDEEP

      24576:KcndyGBA7qz0Ff9XaWSUqQztCEvOW9UpH/8X06Bhgq16:6G8I0Ff9XaWLqQzt6x8kGhgq1

MITRE ATT&CK Matrix

Tasks