General
-
Target
f65ccc2c66469514d5c6fd6133c88b7861f560b8b1d497b928929012711931f9
-
Size
19KB
-
Sample
240417-zm2yhafb2z
-
MD5
5291b9219072bca415308160cdb85e7b
-
SHA1
d1d647d2689656fe1b92e29ae8a5c0bb6c1c0625
-
SHA256
f65ccc2c66469514d5c6fd6133c88b7861f560b8b1d497b928929012711931f9
-
SHA512
6fd5ae5df84ff08aa32f200b3dca1e24a16256e17d281df1ce445010a8a51e8e9a12a7df624aba38b3888fc045cc9ab22a082bd90d645646964365063d6509a9
-
SSDEEP
192:2V7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2+3m0uRo/FWF8qa1Dojjgi:QqaCF31cix+Dc4zjBm0uy/oFF46gi
Malware Config
Extracted
cobaltstrike
http://39.100.128.2:443/Setup/jsp/5I7S97RW0UWW
-
user_agent
Accept: image/*, application/xhtml+xml, application/xml Accept-Language: en-za Accept-Encoding: br, * User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; fr; rv:1.9.0.10) Gecko/2009042513 Ubuntu/8.04 (hardy) Firefox/3.0.10
Targets
-
-
Target
f65ccc2c66469514d5c6fd6133c88b7861f560b8b1d497b928929012711931f9
-
Size
19KB
-
MD5
5291b9219072bca415308160cdb85e7b
-
SHA1
d1d647d2689656fe1b92e29ae8a5c0bb6c1c0625
-
SHA256
f65ccc2c66469514d5c6fd6133c88b7861f560b8b1d497b928929012711931f9
-
SHA512
6fd5ae5df84ff08aa32f200b3dca1e24a16256e17d281df1ce445010a8a51e8e9a12a7df624aba38b3888fc045cc9ab22a082bd90d645646964365063d6509a9
-
SSDEEP
192:2V7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2+3m0uRo/FWF8qa1Dojjgi:QqaCF31cix+Dc4zjBm0uy/oFF46gi
Score10/10-
Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
-