General
-
Target
53bf13d2c4a5ec074dd8a8607b2b771a6ee16bf6d5caef120143f76cac083f5b
-
Size
349KB
-
Sample
240330-hrlcwabc93
-
MD5
7828fbe2ff376fc234bb217acfe8a4f7
-
SHA1
050d83df8aa2bb710093dc6f3964681446f2b5c3
-
SHA256
53bf13d2c4a5ec074dd8a8607b2b771a6ee16bf6d5caef120143f76cac083f5b
-
SHA512
681928b8c0136ba1b696575723a2dd3b327e5aaa7a568e54abe744b9e4d8cdeb881f2752e1922846c3645516059bedb350728a3c29f5975f9916ea9d5b6cd19f
-
SSDEEP
6144:oTH64ZN4c9OUfsTGvZ3F99vimQ4eu7d4niLlabQRqR6Goh8UBIaxp/U+0:o2cN4c9OAsaBfhQK4niLYb/o2UBZPU+0
Static task
static1
Behavioral task
behavioral1
Sample
53bf13d2c4a5ec074dd8a8607b2b771a6ee16bf6d5caef120143f76cac083f5b.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
53bf13d2c4a5ec074dd8a8607b2b771a6ee16bf6d5caef120143f76cac083f5b.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
cobaltstrike
http://fluffy-teletype-gw.aws-euc1.cloud-ara.tyk.io:443/api/v2/GetAttachment
-
user_agent
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.5 Referer: http://code.jquery.com/ Accept-Encoding: gzip, deflate User-Agent: Mozilla/5.0 (X11; CrOS x86_64; AppleWebKit/537.36; Chrome/112.0.0.0; Safari/537.36; uacq)
Targets
-
-
Target
53bf13d2c4a5ec074dd8a8607b2b771a6ee16bf6d5caef120143f76cac083f5b
-
Size
349KB
-
MD5
7828fbe2ff376fc234bb217acfe8a4f7
-
SHA1
050d83df8aa2bb710093dc6f3964681446f2b5c3
-
SHA256
53bf13d2c4a5ec074dd8a8607b2b771a6ee16bf6d5caef120143f76cac083f5b
-
SHA512
681928b8c0136ba1b696575723a2dd3b327e5aaa7a568e54abe744b9e4d8cdeb881f2752e1922846c3645516059bedb350728a3c29f5975f9916ea9d5b6cd19f
-
SSDEEP
6144:oTH64ZN4c9OUfsTGvZ3F99vimQ4eu7d4niLlabQRqR6Goh8UBIaxp/U+0:o2cN4c9OAsaBfhQK4niLYb/o2UBZPU+0
Score10/10 -