cobaltstrike | a4fc6a11a73666bd9dfd8f02b301584c5a8c150896285153b835b44ebf2b7b45 | Triage

Sharing

General

Target

f6e70605677f2bd9f212df3a85ab1348_JaffaCakes118
Size

1.4MB
Sample

240418-arx3nsde3v
MD5

f6e70605677f2bd9f212df3a85ab1348
SHA1

80027c254f7d0465bb1536587dd693058e2271ff
SHA256

a4fc6a11a73666bd9dfd8f02b301584c5a8c150896285153b835b44ebf2b7b45
SHA512

28a171d2581c3d8674204524c800b5abd4fe8509099f2e46abae991f7ab7d2f30bb5453e15da74a2614ef20a49824744d56b331885e6b3122ffe8bd4cdb6b316
SSDEEP

12288:Yx1RXY7QeCjNVvP72IKaQfJCa+SPZCNClV9P86K1LqxZG7GHGK4S221oP83TCxIa:MRXhjn3qxmCBP8zqxZgWCP8MIta

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://:0

Targets

- Target
  
  f6e70605677f2bd9f212df3a85ab1348_JaffaCakes118
- Size
  
  1.4MB
- MD5
  
  f6e70605677f2bd9f212df3a85ab1348
- SHA1
  
  80027c254f7d0465bb1536587dd693058e2271ff
- SHA256
  
  a4fc6a11a73666bd9dfd8f02b301584c5a8c150896285153b835b44ebf2b7b45
- SHA512
  
  28a171d2581c3d8674204524c800b5abd4fe8509099f2e46abae991f7ab7d2f30bb5453e15da74a2614ef20a49824744d56b331885e6b3122ffe8bd4cdb6b316
- SSDEEP
  
  12288:Yx1RXY7QeCjNVvP72IKaQfJCa+SPZCNClV9P86K1LqxZG7GHGK4S221oP83TCxIa:MRXhjn3qxmCBP8zqxZgWCP8MIta
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

cobaltstrikebackdoortrojan