General

  • Target

    4f176422e7501d30aea195fbb0687f31261fd3e16352a7e461f859b95ea40b2d

  • Size

    1.3MB

  • Sample

    240226-nr9y5acf25

  • MD5

    6b8c779759afb5ad3412f12b19a5edf7

  • SHA1

    129f5aa400ea834a2abbbf388865f1ba07fda15a

  • SHA256

    4f176422e7501d30aea195fbb0687f31261fd3e16352a7e461f859b95ea40b2d

  • SHA512

    847be2ae26eb17047b049d924e29939694f0e616e7ce61377e8aa4409c2f4b203b0cbd0cd97ba1e21659aee8f2c3f02d2aace794cf0d271322a5b4d538507f71

  • SSDEEP

    24576:+spnN8a+kVJbUEE38cU53SgPeOewpwtwOqCKnrse+6:+sRy1kVJbUB38cSSgPNewS6Rnr17

Malware Config

Extracted

Family

cobaltstrike

C2

http://8.217.137.245:60011/dZVI

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; NP09; NP09; MAAU)

Targets

    • Target

      4f176422e7501d30aea195fbb0687f31261fd3e16352a7e461f859b95ea40b2d

    • Size

      1.3MB

    • MD5

      6b8c779759afb5ad3412f12b19a5edf7

    • SHA1

      129f5aa400ea834a2abbbf388865f1ba07fda15a

    • SHA256

      4f176422e7501d30aea195fbb0687f31261fd3e16352a7e461f859b95ea40b2d

    • SHA512

      847be2ae26eb17047b049d924e29939694f0e616e7ce61377e8aa4409c2f4b203b0cbd0cd97ba1e21659aee8f2c3f02d2aace794cf0d271322a5b4d538507f71

    • SSDEEP

      24576:+spnN8a+kVJbUEE38cU53SgPeOewpwtwOqCKnrse+6:+sRy1kVJbUB38cSSgPNewS6Rnr17

MITRE ATT&CK Matrix

Tasks