cobaltstrike | 0145a1dc21e022cbb5a2c5db12a0293270d5a235b01d5d6cfb050b21f503ccdc | Triage

Sharing

General

Target

0145a1dc21e022cbb5a2c5db12a0293270d5a235b01d5d6cfb050b21f503ccdc
Size

19KB
Sample

240419-l9ws4sfc44
MD5

4c5c864f6f793ca3644ec040a451a542
SHA1

84c4d71c1de1ee50700221770dd6be36da78e08a
SHA256

0145a1dc21e022cbb5a2c5db12a0293270d5a235b01d5d6cfb050b21f503ccdc
SHA512

d4ef4425ba52fe03cf4c8e711f11bd43ececfa8dbd0bdac079774e6d810bd635a768947ac220f85925c896938a1a8e576db97645f6d3b0c926c0755c24eaf844
SSDEEP

192:oV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2KkIWF8qa1Dojjgi:aqaCF31cix+Dc4zjs9FF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://45.152.67.101:10087/p3Gs

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; Win64; x64; Trident/6.0; MATMJS)

Targets

- Target
  
  0145a1dc21e022cbb5a2c5db12a0293270d5a235b01d5d6cfb050b21f503ccdc
- Size
  
  19KB
- MD5
  
  4c5c864f6f793ca3644ec040a451a542
- SHA1
  
  84c4d71c1de1ee50700221770dd6be36da78e08a
- SHA256
  
  0145a1dc21e022cbb5a2c5db12a0293270d5a235b01d5d6cfb050b21f503ccdc
- SHA512
  
  d4ef4425ba52fe03cf4c8e711f11bd43ececfa8dbd0bdac079774e6d810bd635a768947ac220f85925c896938a1a8e576db97645f6d3b0c926c0755c24eaf844
- SSDEEP
  
  192:oV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2KkIWF8qa1Dojjgi:aqaCF31cix+Dc4zjs9FF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan