Analysis
-
max time kernel
148s -
max time network
149s -
platform
windows7_x64 -
resource
win7-20240220-en -
resource tags
arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system -
submitted
23-04-2024 04:27
Static task
static1
Behavioral task
behavioral1
Sample
755aef146f7b440af1f346a8775d02477e0c837270a45061f8cadf9ac9e79c3b.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
755aef146f7b440af1f346a8775d02477e0c837270a45061f8cadf9ac9e79c3b.exe
Resource
win10v2004-20240412-en
General
-
Target
755aef146f7b440af1f346a8775d02477e0c837270a45061f8cadf9ac9e79c3b.exe
-
Size
19KB
-
MD5
690d1e53903b2b13d28cf0dc5bf3f1c7
-
SHA1
9037204162a543f80c83d1488416c88b2430fd9a
-
SHA256
755aef146f7b440af1f346a8775d02477e0c837270a45061f8cadf9ac9e79c3b
-
SHA512
5b605e1e280838ab59731050815f507af5912eed53ef3ae1c627fcbad040f1e90fe341d2817dad220202aa045f883eb7a78412fd524ae8b08d2f89f115bf1aa9
-
SSDEEP
192:IV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2VpQH9yKWF8qa1Dojjgi:6qaCF31cix+Dc4zjapQH0FF46gi
Malware Config
Extracted
cobaltstrike
http://122.51.101.36:5555/2ktL
-
user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; BOIE9;ENAU)
Signatures
-
Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.