cobaltstrike | a4ea69df3dbf4bc7302c3ecc94ca8976f1f231058395ca2424818a8d204cbd27 | Triage

Sharing

General

Target

a4ea69df3dbf4bc7302c3ecc94ca8976f1f231058395ca2424818a8d204cbd27
Size

19KB
Sample

240428-l91r3adf3w
MD5

e977b3d5717c4e7f34cd159525c0741d
SHA1

144dc2810cde4868d63ad7f34d354fcc8aabf7fc
SHA256

a4ea69df3dbf4bc7302c3ecc94ca8976f1f231058395ca2424818a8d204cbd27
SHA512

4b7692256ea6ebfa1cd62e08a7aab83b722574404b989cfe3787d665dc998a553faad42b255853576172af626a71523eb96c4c4b3d94f99e2063f42f111ef019
SSDEEP

192:wV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2qAENWF8qa1Dojjgi:SqaCF31cix+Dc4zjtfgFF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://192.168.10.19:8888/INMy

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0; MASP)

Targets

- Target
  
  a4ea69df3dbf4bc7302c3ecc94ca8976f1f231058395ca2424818a8d204cbd27
- Size
  
  19KB
- MD5
  
  e977b3d5717c4e7f34cd159525c0741d
- SHA1
  
  144dc2810cde4868d63ad7f34d354fcc8aabf7fc
- SHA256
  
  a4ea69df3dbf4bc7302c3ecc94ca8976f1f231058395ca2424818a8d204cbd27
- SHA512
  
  4b7692256ea6ebfa1cd62e08a7aab83b722574404b989cfe3787d665dc998a553faad42b255853576172af626a71523eb96c4c4b3d94f99e2063f42f111ef019
- SSDEEP
  
  192:wV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2qAENWF8qa1Dojjgi:SqaCF31cix+Dc4zjtfgFF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan