cobaltstrike | 799352dd262a34eb25dae93b87c6fc5d7991351c0baa83ccceb2156ed18d6a8d | Triage

Sharing

General

Target

799352dd262a34eb25dae93b87c6fc5d7991351c0baa83ccceb2156ed18d6a8d.exe
Size

17KB
Sample

240522-vq8g8sab6s
MD5

c7e1d79a678a55dc2facda715e60ec5e
SHA1

03c37a21b90f4d5e42072ed5f26b6df3c35c995a
SHA256

799352dd262a34eb25dae93b87c6fc5d7991351c0baa83ccceb2156ed18d6a8d
SHA512

73329592f29249fe74923b0adaf47c24498c3357732bbb9c038c99bf60664ca26d849525e3bfd7286758b1cd95c5cf96292088f4212461d9e27d757661d3a1f2
SSDEEP

192:0DMAe4Ckj19RZZ6wpSfu1bKcq5uHj7khBDSeKNH46kTn121u/ZBUbOj6kxiY:0DMAoKz6WtKEj7aBDiLL1uBbAY

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://3.145.83.235:8080/q2Gs

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.0; WOW64; Trident/5.0)

Targets

- Target
  
  799352dd262a34eb25dae93b87c6fc5d7991351c0baa83ccceb2156ed18d6a8d.exe
- Size
  
  17KB
- MD5
  
  c7e1d79a678a55dc2facda715e60ec5e
- SHA1
  
  03c37a21b90f4d5e42072ed5f26b6df3c35c995a
- SHA256
  
  799352dd262a34eb25dae93b87c6fc5d7991351c0baa83ccceb2156ed18d6a8d
- SHA512
  
  73329592f29249fe74923b0adaf47c24498c3357732bbb9c038c99bf60664ca26d849525e3bfd7286758b1cd95c5cf96292088f4212461d9e27d757661d3a1f2
- SSDEEP
  
  192:0DMAe4Ckj19RZZ6wpSfu1bKcq5uHj7khBDSeKNH46kTn121u/ZBUbOj6kxiY:0DMAoKz6WtKEj7aBDiLL1uBbAY
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan