Overview

overview

10

Static

static

3

c300b10167...70.exe

windows7-x64

10

c300b10167...70.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    c300b101675c7e7a84c0a47e76cbef856663884c3da8929ee0c45e6d8fe0db70

  • Size

    19KB

  • Sample

    240504-155b1sgb59

  • MD5

    79e303b990a7f7ff439a99b546853c62

  • SHA1

    7f2e9ea6da03a55c2450c9ea57df2ec19b54493e

  • SHA256

    c300b101675c7e7a84c0a47e76cbef856663884c3da8929ee0c45e6d8fe0db70

  • SHA512

    8b53caa17f11ba8f5a5215cd1b49973fd70b7c0decf16b73b37c4d34d478f71d0149f3d24313ea4453cb2c7ded8882f9448435eca0af62d605b55dad50e2b4d1

  • SSDEEP

    192:kV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2WeMplWF8qa1Dojjgi:WqaCF31cix+Dc4zjPeBFF46gi

Score
10/10
cobaltstrikebackdoortrojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://192.168.10.194:80/css/ab.gif

Attributes
  • user_agent

    Host: google.com Connection: close Accept-Encoding: gzip, br Accept-Language: en-GB;q=0.9, *;q=0.7 User-Agent: Mozilla/5.0 (Windows Phone 10.0; Android 6.0.1; Microsoft; RM-1152) AppleWebKit/537.36 (KHTML, like Gecko)

Targets

    • Target

      c300b101675c7e7a84c0a47e76cbef856663884c3da8929ee0c45e6d8fe0db70

    • Size

      19KB

    • MD5

      79e303b990a7f7ff439a99b546853c62

    • SHA1

      7f2e9ea6da03a55c2450c9ea57df2ec19b54493e

    • SHA256

      c300b101675c7e7a84c0a47e76cbef856663884c3da8929ee0c45e6d8fe0db70

    • SHA512

      8b53caa17f11ba8f5a5215cd1b49973fd70b7c0decf16b73b37c4d34d478f71d0149f3d24313ea4453cb2c7ded8882f9448435eca0af62d605b55dad50e2b4d1

    • SSDEEP

      192:kV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2WeMplWF8qa1Dojjgi:WqaCF31cix+Dc4zjPeBFF46gi

    Score
    10/10
    cobaltstrikebackdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks