cobaltstrike | 003f50830c8976ad627d7471ea21ff61fdc9284bab1ba44625dc046e89c19f10 | Triage

Sharing

General

Target

003f50830c8976ad627d7471ea21ff61fdc9284bab1ba44625dc046e89c19f10
Size

19KB
Sample

240417-dmpsaaca65
MD5

c6034b3541dd9e7d45caecc7f015bc43
SHA1

9fe1d707d5a02f8d094304361b3aa677e980f13b
SHA256

003f50830c8976ad627d7471ea21ff61fdc9284bab1ba44625dc046e89c19f10
SHA512

70de2f9616c40a65547d26dcfad267d1139dfbff84d8c783ae7e3e1eda95a0f810db94a6f412e95cd321b88bbfad17a0835ef985a589084352ed31779b6d4bb7
SSDEEP

192:wV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2DG2tbWWF8qa1Dojjgi:SqaCF31cix+Dc4zjB0bnFF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://38.207.179.115:8999/MBdj

Attributes

user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)

Targets

- Target
  
  003f50830c8976ad627d7471ea21ff61fdc9284bab1ba44625dc046e89c19f10
- Size
  
  19KB
- MD5
  
  c6034b3541dd9e7d45caecc7f015bc43
- SHA1
  
  9fe1d707d5a02f8d094304361b3aa677e980f13b
- SHA256
  
  003f50830c8976ad627d7471ea21ff61fdc9284bab1ba44625dc046e89c19f10
- SHA512
  
  70de2f9616c40a65547d26dcfad267d1139dfbff84d8c783ae7e3e1eda95a0f810db94a6f412e95cd321b88bbfad17a0835ef985a589084352ed31779b6d4bb7
- SSDEEP
  
  192:wV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2DG2tbWWF8qa1Dojjgi:SqaCF31cix+Dc4zjB0bnFF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan