General

  • Target

    1e44d267e298a2c1ff01eaf37e4f0d45520db4bcc34271fe0e1c2f3ad3c62d66

  • Size

    195KB

  • Sample

    240226-lh3scaaf6x

  • MD5

    93b6e7ee762d1545a9d5438f08f95450

  • SHA1

    edc95951cf11da056cb15eab0a3662533d024470

  • SHA256

    1e44d267e298a2c1ff01eaf37e4f0d45520db4bcc34271fe0e1c2f3ad3c62d66

  • SHA512

    84ab0ff0b0aafcc402993423f69b2915a81c803bdb4f7e70902cb442c4b76ac415c2733bbd5cf9c3c34859763cb231a66c18e9108e66484f2e299f6d4509be3e

  • SSDEEP

    1536:TbtGlBMj3qJy5Fl7RyMQ4QGNFjUYT7qx:TbtGQj6Jy5f7RyWsYT

Malware Config

Extracted

Family

cobaltstrike

C2

http://121.40.232.126:7719/XOnH

Attributes
  • user_agent

    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.2; InfoPath.3)

Targets

    • Target

      1e44d267e298a2c1ff01eaf37e4f0d45520db4bcc34271fe0e1c2f3ad3c62d66

    • Size

      195KB

    • MD5

      93b6e7ee762d1545a9d5438f08f95450

    • SHA1

      edc95951cf11da056cb15eab0a3662533d024470

    • SHA256

      1e44d267e298a2c1ff01eaf37e4f0d45520db4bcc34271fe0e1c2f3ad3c62d66

    • SHA512

      84ab0ff0b0aafcc402993423f69b2915a81c803bdb4f7e70902cb442c4b76ac415c2733bbd5cf9c3c34859763cb231a66c18e9108e66484f2e299f6d4509be3e

    • SSDEEP

      1536:TbtGlBMj3qJy5Fl7RyMQ4QGNFjUYT7qx:TbtGQj6Jy5f7RyWsYT

MITRE ATT&CK Matrix

Tasks