General

  • Target

    ff4e3f8436cd5c02082a0721e7ebeea6740fd6e25acc55f9d4f1adb45d351d46

  • Size

    17KB

  • Sample

    240305-dhc8pach3v

  • MD5

    39a9fbf5edbf00be46a514f06ea36795

  • SHA1

    d9f1e8a1a712672715e676771de5eb0a78aca6b8

  • SHA256

    ff4e3f8436cd5c02082a0721e7ebeea6740fd6e25acc55f9d4f1adb45d351d46

  • SHA512

    e8635ece28fafdd33a30180bdf77b1be97b52ebfbd7181bd5fb81a7d921fe00ebdef3f3987d856dd71dc7c1626633b3956e7fc5bf4b37676c8d0ee3c272c4c4b

  • SSDEEP

    192:sDMAe4Ckj19RZZ6wpSfu1bKcq5uHj7khBDSeKNH4PycBUbOj6kxiY:sDMAoKz6WtKEj7aBDi+ycbAY

Malware Config

Extracted

Family

cobaltstrike

C2

http://192.168.10.136:80/ofCE

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; MATP; MATP)

Targets

    • Target

      ff4e3f8436cd5c02082a0721e7ebeea6740fd6e25acc55f9d4f1adb45d351d46

    • Size

      17KB

    • MD5

      39a9fbf5edbf00be46a514f06ea36795

    • SHA1

      d9f1e8a1a712672715e676771de5eb0a78aca6b8

    • SHA256

      ff4e3f8436cd5c02082a0721e7ebeea6740fd6e25acc55f9d4f1adb45d351d46

    • SHA512

      e8635ece28fafdd33a30180bdf77b1be97b52ebfbd7181bd5fb81a7d921fe00ebdef3f3987d856dd71dc7c1626633b3956e7fc5bf4b37676c8d0ee3c272c4c4b

    • SSDEEP

      192:sDMAe4Ckj19RZZ6wpSfu1bKcq5uHj7khBDSeKNH4PycBUbOj6kxiY:sDMAoKz6WtKEj7aBDi+ycbAY

MITRE ATT&CK Matrix

Tasks