General
-
Target
19447d45144d36606c33f3a5e6516007be7cbdac0721519dd16637ce39495676
-
Size
1.4MB
-
Sample
240329-l2mkgafc75
-
MD5
d6a7e8972324f3dacf881894a05c8def
-
SHA1
01d0d2d41c1cf8af2fa24fa2af8d5c0cb9b21a29
-
SHA256
19447d45144d36606c33f3a5e6516007be7cbdac0721519dd16637ce39495676
-
SHA512
0565bb0ec0414fea6f705d0a277798f977af0d761cc6ff1a807a03a91c369d22878059fa522c4d82b248cdee29c70bc96363ddd5e6ba1c20c6caadca736ef5a5
-
SSDEEP
24576:0s/xxqjkQDxJqfbUsCXafW6gGECW94Z1JED1:nxxqjrDxJ+bFCagGEd4ZTED1
Malware Config
Extracted
cobaltstrike
http://www.yhoovideo.life:443/jquery-3.3.2.slim.min.js
-
user_agent
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.5 Referer: http://code.jquery.com/ Accept-Encoding: gzip, deflate User-Agent: Mozilla/5.0 (Windows NT 6.3; Win64; x64; Trident/7.0; TCO_20200224223500; rv:11.0) like Gecko
Targets
-
-
Target
19447d45144d36606c33f3a5e6516007be7cbdac0721519dd16637ce39495676
-
Size
1.4MB
-
MD5
d6a7e8972324f3dacf881894a05c8def
-
SHA1
01d0d2d41c1cf8af2fa24fa2af8d5c0cb9b21a29
-
SHA256
19447d45144d36606c33f3a5e6516007be7cbdac0721519dd16637ce39495676
-
SHA512
0565bb0ec0414fea6f705d0a277798f977af0d761cc6ff1a807a03a91c369d22878059fa522c4d82b248cdee29c70bc96363ddd5e6ba1c20c6caadca736ef5a5
-
SSDEEP
24576:0s/xxqjkQDxJqfbUsCXafW6gGECW94Z1JED1:nxxqjrDxJ+bFCagGEd4ZTED1
Score10/10-
Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
-