cobaltstrike | 96413a18650aaacace90792e176eba1d8cca5816441d303172cd3c47f922f350 | Triage

Sharing

General

Target

96413a18650aaacace90792e176eba1d8cca5816441d303172cd3c47f922f350
Size

19KB
Sample

240328-lzje2ahh8t
MD5

e43155f2dd885d13941a86057aa586ce
SHA1

60f7bf6bc379310f657c4428dd8afd6fd0541561
SHA256

96413a18650aaacace90792e176eba1d8cca5816441d303172cd3c47f922f350
SHA512

3a25462c447425dde216bfa6726b3af076c5f84ef3bbb5ac1643200ff435167a4eccaa0c4f60d4d09473749a1eb67c82e7ea67537d0fdce405070499841601cf
SSDEEP

192:UV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2ar6TBWF8qa1Dojjgi:GqaCF31cix+Dc4zjf64FF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://38.6.177.16:80/vmA9

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; BOIE9;ENAU)

Targets

- Target
  
  96413a18650aaacace90792e176eba1d8cca5816441d303172cd3c47f922f350
- Size
  
  19KB
- MD5
  
  e43155f2dd885d13941a86057aa586ce
- SHA1
  
  60f7bf6bc379310f657c4428dd8afd6fd0541561
- SHA256
  
  96413a18650aaacace90792e176eba1d8cca5816441d303172cd3c47f922f350
- SHA512
  
  3a25462c447425dde216bfa6726b3af076c5f84ef3bbb5ac1643200ff435167a4eccaa0c4f60d4d09473749a1eb67c82e7ea67537d0fdce405070499841601cf
- SSDEEP
  
  192:UV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2ar6TBWF8qa1Dojjgi:GqaCF31cix+Dc4zjf64FF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan