cobaltstrike | 4bfebd6269d81de5d3719309a3a71d2637deb1d48fa340b6ce7b53e47bcc1a40 | Triage

Sharing

General

Target

4bfebd6269d81de5d3719309a3a71d2637deb1d48fa340b6ce7b53e47bcc1a40
Size

19KB
Sample

240417-evvh6sde39
MD5

47cbfb3e162e4302053a5ec5415e6eb4
SHA1

eba4c613122536b426c21b03abdfe96437e82637
SHA256

4bfebd6269d81de5d3719309a3a71d2637deb1d48fa340b6ce7b53e47bcc1a40
SHA512

176834b54754bc7bb0fdd92e645fe808238b154f14a1a74cbf2b893fac9116b570c872e4dd29e7f7c95e3f651c42d23dfbe9a469fb5af019db5b046d45711dc2
SSDEEP

192:eV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2XYEWF8qa1Dojjgi:oqaCF31cix+Dc4zjwYxFF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://199.180.119.62:2333/x6hG

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; Trident/6.0; Touch)

Targets

- Target
  
  4bfebd6269d81de5d3719309a3a71d2637deb1d48fa340b6ce7b53e47bcc1a40
- Size
  
  19KB
- MD5
  
  47cbfb3e162e4302053a5ec5415e6eb4
- SHA1
  
  eba4c613122536b426c21b03abdfe96437e82637
- SHA256
  
  4bfebd6269d81de5d3719309a3a71d2637deb1d48fa340b6ce7b53e47bcc1a40
- SHA512
  
  176834b54754bc7bb0fdd92e645fe808238b154f14a1a74cbf2b893fac9116b570c872e4dd29e7f7c95e3f651c42d23dfbe9a469fb5af019db5b046d45711dc2
- SSDEEP
  
  192:eV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2XYEWF8qa1Dojjgi:oqaCF31cix+Dc4zjwYxFF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan