cobaltstrike | 9966774fa4645cfccfa81899452ccc85c2f35afd00456a951031ff6e6e2b2cf4 | Triage

Sharing

General

Target

9966774fa4645cfccfa81899452ccc85c2f35afd00456a951031ff6e6e2b2cf4
Size

19KB
Sample

240310-jxxtjafg96
MD5

60fe9362174339dca0cee525ad00a22d
SHA1

a2cc06024429d6f7053e9c9d8ba87507db038fe9
SHA256

9966774fa4645cfccfa81899452ccc85c2f35afd00456a951031ff6e6e2b2cf4
SHA512

1db2f6b8725d89b9281cb10549ca6d49ad8f2b3c49caed1d2ac4c3086cf577d330d13d2034aa539276a8da6f495d739a307c97592f3959ad06934a5408addf85
SSDEEP

192:DV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2BtJBWF8qa1Dojjgi:tqaCF31cix+Dc4zj9FF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://47.97.214.255:4444/e6Vl

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; NP06)

Targets

- Target
  
  9966774fa4645cfccfa81899452ccc85c2f35afd00456a951031ff6e6e2b2cf4
- Size
  
  19KB
- MD5
  
  60fe9362174339dca0cee525ad00a22d
- SHA1
  
  a2cc06024429d6f7053e9c9d8ba87507db038fe9
- SHA256
  
  9966774fa4645cfccfa81899452ccc85c2f35afd00456a951031ff6e6e2b2cf4
- SHA512
  
  1db2f6b8725d89b9281cb10549ca6d49ad8f2b3c49caed1d2ac4c3086cf577d330d13d2034aa539276a8da6f495d739a307c97592f3959ad06934a5408addf85
- SSDEEP
  
  192:DV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2BtJBWF8qa1Dojjgi:tqaCF31cix+Dc4zj9FF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan