General
-
Target
ef8102b275f8f32aeadf52a6ab55baad71a19ae495e746b0ee98d5aa017241b5
-
Size
7.7MB
-
Sample
240304-c2hf3sge83
-
MD5
8a3edbd808dfbc7028abd9a800cb47d6
-
SHA1
76498fa21af03d67bb1658efa6f4b042aaa83f66
-
SHA256
ef8102b275f8f32aeadf52a6ab55baad71a19ae495e746b0ee98d5aa017241b5
-
SHA512
aa711ce60656b813e42375a5990950ab9d8d7ddcae49884a54da543eea097edb6089ac268676895173c2768829dbf837e2a0f0a218874d24aaff1b766c730dfd
-
SSDEEP
196608:ZSLaAXYy5TdQmRJ8dA6lXCy1ArqkVpKCX+PrF4ZMEObeghp/mytQiV:ExYadQuslXrAZYCuPJO7meg9
Behavioral task
behavioral1
Sample
ef8102b275f8f32aeadf52a6ab55baad71a19ae495e746b0ee98d5aa017241b5.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
ef8102b275f8f32aeadf52a6ab55baad71a19ae495e746b0ee98d5aa017241b5.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
cobaltstrike
http://192.168.59.130:5000/YFjT
-
user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0)
Targets
-
-
Target
ef8102b275f8f32aeadf52a6ab55baad71a19ae495e746b0ee98d5aa017241b5
-
Size
7.7MB
-
MD5
8a3edbd808dfbc7028abd9a800cb47d6
-
SHA1
76498fa21af03d67bb1658efa6f4b042aaa83f66
-
SHA256
ef8102b275f8f32aeadf52a6ab55baad71a19ae495e746b0ee98d5aa017241b5
-
SHA512
aa711ce60656b813e42375a5990950ab9d8d7ddcae49884a54da543eea097edb6089ac268676895173c2768829dbf837e2a0f0a218874d24aaff1b766c730dfd
-
SSDEEP
196608:ZSLaAXYy5TdQmRJ8dA6lXCy1ArqkVpKCX+PrF4ZMEObeghp/mytQiV:ExYadQuslXrAZYCuPJO7meg9
Score10/10-
Loads dropped DLL
-