General
-
Target
1ff587a42b523aac21573d68091db7056d28106a9f5dc55841c1305089d2b8a2
-
Size
872KB
-
Sample
240419-mh5sdahc3v
-
MD5
52760bad21f9e480146e6100467d2d06
-
SHA1
dc17bacb2e348f2c14050319f8194b6f31aaa5da
-
SHA256
1ff587a42b523aac21573d68091db7056d28106a9f5dc55841c1305089d2b8a2
-
SHA512
debf0b52a2dfcee185c6fa84022e08c3cbb65b2a68e79d85ff14d969a20de9eb37d59fcdb9bd9e654f7b12da3ab55d6fd3c6cf4925e7fa5108c98396e55015c2
-
SSDEEP
12288:2IWRpuCE7r1vWzt47rQEyWIwvUdaDpxmH6lIJ5:2p6CQr18WfjytwpK6Y
Malware Config
Extracted
cobaltstrike
http://b35977a00ebd8086.safe1.lat:2082/jquery-3.3.2.slim.min.js
-
user_agent
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.5 Referer: http://code.jquery.com/ Accept-Encoding: gzip, deflate User-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko