General

  • Target

    678ea3d9476dd28aaf7381736516bd7b80c7786c6ac992295fd1d7493aba2db0

  • Size

    19KB

  • Sample

    240303-zdn1aafg21

  • MD5

    bf1c47851b62f64212fc3a74d8224cdc

  • SHA1

    d9dba2482918bb0b1b31ae2d177fe396acc1eaac

  • SHA256

    678ea3d9476dd28aaf7381736516bd7b80c7786c6ac992295fd1d7493aba2db0

  • SHA512

    29e94bab4dae6a5482b26bf20de6cb211aa30ae972eaa06c3465064ec81cd8eeb0228778e4d9a78f2f2198865ab905cc6d95e9010a64a963ea0f1261ce055cba

  • SSDEEP

    192:iV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2yKjSWF8qa1Dojjgi:sqaCF31cix+Dc4zjm/FF46gi

Malware Config

Extracted

Family

cobaltstrike

C2

http://8.134.176.150:6066/TVcP

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; MDDRJS)

Targets

    • Target

      678ea3d9476dd28aaf7381736516bd7b80c7786c6ac992295fd1d7493aba2db0

    • Size

      19KB

    • MD5

      bf1c47851b62f64212fc3a74d8224cdc

    • SHA1

      d9dba2482918bb0b1b31ae2d177fe396acc1eaac

    • SHA256

      678ea3d9476dd28aaf7381736516bd7b80c7786c6ac992295fd1d7493aba2db0

    • SHA512

      29e94bab4dae6a5482b26bf20de6cb211aa30ae972eaa06c3465064ec81cd8eeb0228778e4d9a78f2f2198865ab905cc6d95e9010a64a963ea0f1261ce055cba

    • SSDEEP

      192:iV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2yKjSWF8qa1Dojjgi:sqaCF31cix+Dc4zjm/FF46gi

MITRE ATT&CK Matrix

Tasks