cobaltstrike | 755aef146f7b440af1f346a8775d02477e0c837270a45061f8cadf9ac9e79c3b | Triage

Sharing

General

Target

755aef146f7b440af1f346a8775d02477e0c837270a45061f8cadf9ac9e79c3b
Size

19KB
Sample

240423-e2977sda6y
MD5

690d1e53903b2b13d28cf0dc5bf3f1c7
SHA1

9037204162a543f80c83d1488416c88b2430fd9a
SHA256

755aef146f7b440af1f346a8775d02477e0c837270a45061f8cadf9ac9e79c3b
SHA512

5b605e1e280838ab59731050815f507af5912eed53ef3ae1c627fcbad040f1e90fe341d2817dad220202aa045f883eb7a78412fd524ae8b08d2f89f115bf1aa9
SSDEEP

192:IV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2VpQH9yKWF8qa1Dojjgi:6qaCF31cix+Dc4zjapQH0FF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://122.51.101.36:5555/2ktL

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; BOIE9;ENAU)

Targets

- Target
  
  755aef146f7b440af1f346a8775d02477e0c837270a45061f8cadf9ac9e79c3b
- Size
  
  19KB
- MD5
  
  690d1e53903b2b13d28cf0dc5bf3f1c7
- SHA1
  
  9037204162a543f80c83d1488416c88b2430fd9a
- SHA256
  
  755aef146f7b440af1f346a8775d02477e0c837270a45061f8cadf9ac9e79c3b
- SHA512
  
  5b605e1e280838ab59731050815f507af5912eed53ef3ae1c627fcbad040f1e90fe341d2817dad220202aa045f883eb7a78412fd524ae8b08d2f89f115bf1aa9
- SSDEEP
  
  192:IV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2VpQH9yKWF8qa1Dojjgi:6qaCF31cix+Dc4zjapQH0FF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan