General

  • Target

    4a2e23d604d2d2774df43b5c539f9726c6033db55b483c49e4e84314265f6f6e

  • Size

    152KB

  • Sample

    240226-dch7raba42

  • MD5

    86853e938383d0a4fbddc372dbfa8fdc

  • SHA1

    3807cba2468c7cae458b1e9e4d84420799657bc4

  • SHA256

    4a2e23d604d2d2774df43b5c539f9726c6033db55b483c49e4e84314265f6f6e

  • SHA512

    a1174963a3ae4f881ec3737325750b470ed778472a1fe9d21225c704851098025b26aa8be06cea844cf2625b594c83e1103cb58d961442a65c093cbeb6314707

  • SSDEEP

    3072:Be9cEp5g/g351LqNoUjtD1b07FVvM/NuwG4SRpTCj7c4n0T/MsGHSD:BPj/g351LJUhKxVuuj4u8sGy

Malware Config

Extracted

Family

cobaltstrike

C2

http://108.177.235.29:443/preserve/somebody/UIOOT18Z

Attributes
  • user_agent

    Accept: application/xml, application/json, application/xhtml+xml Accept-Language: sb Accept-Encoding: identity, compress User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.143 Safari/537.36

Targets

    • Target

      4a2e23d604d2d2774df43b5c539f9726c6033db55b483c49e4e84314265f6f6e

    • Size

      152KB

    • MD5

      86853e938383d0a4fbddc372dbfa8fdc

    • SHA1

      3807cba2468c7cae458b1e9e4d84420799657bc4

    • SHA256

      4a2e23d604d2d2774df43b5c539f9726c6033db55b483c49e4e84314265f6f6e

    • SHA512

      a1174963a3ae4f881ec3737325750b470ed778472a1fe9d21225c704851098025b26aa8be06cea844cf2625b594c83e1103cb58d961442a65c093cbeb6314707

    • SSDEEP

      3072:Be9cEp5g/g351LqNoUjtD1b07FVvM/NuwG4SRpTCj7c4n0T/MsGHSD:BPj/g351LJUhKxVuuj4u8sGy

MITRE ATT&CK Matrix

Tasks