General
-
Target
1924-0-0x00000000001C0000-0x00000000001C1000-memory.dmp
-
Size
4KB
-
MD5
de9706c99e9d1777ca332437747f11ae
-
SHA1
b577c14c0a861a2120731f1b50718bff7e6140e4
-
SHA256
73b3f2cdff8b79b8b296252d6afdf8bf9dacd9c094ea165534fb1f7eef3fc2f2
-
SHA512
a3e21f2ced353563cf55eb81066aac9412ab62d94256c7c425e0d0ac2b5d6ac34b0bdb30445850e787c9d1861b9c96b5634e8995fe85f26c1706a20b207150a7
Score
10/10
Malware Config
Extracted
Family
cobaltstrike
C2
http://103.116.247.207:443/ZsCM
Attributes
-
user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; BOIE9;ENUSMSE)
Signatures
-
Cobaltstrike family
Files
-
1924-0-0x00000000001C0000-0x00000000001C1000-memory.dmp