General
-
Target
34452711502c9304db8745510f96aa644481162c389f591147327f54d4ae3727
-
Size
191KB
-
Sample
240418-wxk6yscd2s
-
MD5
ed70a46ca74be495aefa84fcfdca48ec
-
SHA1
f3741eae58e9053773fec7c01472862933e3b91a
-
SHA256
34452711502c9304db8745510f96aa644481162c389f591147327f54d4ae3727
-
SHA512
ff8aa868d06372ac414bfc20399f24d5450767046b615c4a59a81d1461ef8aa89d360baf76cad20f2d9709df14f02cec2c1a18e172393acd18f3031e0fd678f6
-
SSDEEP
3072:Z59aB//M0HHWKgl9r4p0Oq9K3ay2VQkFBXg5TzHxvtimoUuNcbBMRm:ZDaB/0UalI0OqG2VQkFQTr8Zg
Malware Config
Extracted
cobaltstrike
http://sodiwugoc.com:443/static-directory/gv.ico
-
user_agent
Host: netflix.com Connection: close Accept: */* Accept-Encoding: gzip, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.135 Safari/537.36 Edge/12.246
Targets
-
-
Target
34452711502c9304db8745510f96aa644481162c389f591147327f54d4ae3727
-
Size
191KB
-
MD5
ed70a46ca74be495aefa84fcfdca48ec
-
SHA1
f3741eae58e9053773fec7c01472862933e3b91a
-
SHA256
34452711502c9304db8745510f96aa644481162c389f591147327f54d4ae3727
-
SHA512
ff8aa868d06372ac414bfc20399f24d5450767046b615c4a59a81d1461ef8aa89d360baf76cad20f2d9709df14f02cec2c1a18e172393acd18f3031e0fd678f6
-
SSDEEP
3072:Z59aB//M0HHWKgl9r4p0Oq9K3ay2VQkFBXg5TzHxvtimoUuNcbBMRm:ZDaB/0UalI0OqG2VQkFQTr8Zg
Score10/10-
Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
-