cobaltstrike | d9c029b157b661c97cb32b47dfc0ad02d13ca67ecbad5b67e8d0db03db6133ff | Triage

Sharing

General

Target

d9c029b157b661c97cb32b47dfc0ad02d13ca67ecbad5b67e8d0db03db6133ff
Size

1.9MB
Sample

240419-mjrl5shd21
MD5

5465ffa2c0f06e1c2bee1852a4cf6aae
SHA1

d72305804ad2dd5e753701b66446f6a71c3ca0bb
SHA256

d9c029b157b661c97cb32b47dfc0ad02d13ca67ecbad5b67e8d0db03db6133ff
SHA512

24cd9f358728ebbcdb012b4c8fe9bd2c4462ceff2998c40864a725eb05a05390b8e8d75d07c03eb3a457642175c812c72c59d382c8ed9e539722d73e3614241e
SSDEEP

24576:P3O2P4oV9to7Tubhn8Bw0/iboNQH67ixhPJ4IwoWtgfxfROWd:DQoBonukxTtixhPJ4IwuJOy

Score

10^/10

cobaltstrike

Malware Config

Extracted

Family

cobaltstrike

C2

http://10.80.20.41:4443/socialapiVersion=2.0

Attributes

user_agent
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.5 Host: officecdn.microsoft.com Accept-Encoding: gzip, deflate User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4044.62 Safari/537.26

Targets

- Target
  
  d9c029b157b661c97cb32b47dfc0ad02d13ca67ecbad5b67e8d0db03db6133ff
- Size
  
  1.9MB
- MD5
  
  5465ffa2c0f06e1c2bee1852a4cf6aae
- SHA1
  
  d72305804ad2dd5e753701b66446f6a71c3ca0bb
- SHA256
  
  d9c029b157b661c97cb32b47dfc0ad02d13ca67ecbad5b67e8d0db03db6133ff
- SHA512
  
  24cd9f358728ebbcdb012b4c8fe9bd2c4462ceff2998c40864a725eb05a05390b8e8d75d07c03eb3a457642175c812c72c59d382c8ed9e539722d73e3614241e
- SSDEEP
  
  24576:P3O2P4oV9to7Tubhn8Bw0/iboNQH67ixhPJ4IwoWtgfxfROWd:DQoBonukxTtixhPJ4IwuJOy
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2