General
-
Target
4da6a062e27c782ff2d206cd546f8ae3be85a19f661943e067e31a4c5d2d8070
-
Size
72KB
-
Sample
240523-lcajlsbh2v
-
MD5
fd7fd716f743a4675d2990941c000aef
-
SHA1
cee40049f08648db817337339c07f99ef389e8f4
-
SHA256
4da6a062e27c782ff2d206cd546f8ae3be85a19f661943e067e31a4c5d2d8070
-
SHA512
2eb42565f6a13a895299a99b72060e59350eb58046d3a391ab2e4881ba1fb1c8ff37b4de80c3cae4ff4982b5486bc56a8da688ad3c6008830af5a856e303384f
-
SSDEEP
1536:07EcSTp0EMLUZ1Zqvqg+j7Shkc8qpsWTMnVdpBexva:0bSTqEHZ1ZqvqgFq4EpBexy
Malware Config
Extracted
cobaltstrike
http://121.37.205.34:80/static/image/refresh.png
-
user_agent
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Referer: https://www.tencent.com/zh-cn/ Accept-Encoding: deflate User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.66 Safari/537.36 Edg/103.0.1264.44
Targets
-
-
Target
4da6a062e27c782ff2d206cd546f8ae3be85a19f661943e067e31a4c5d2d8070
-
Size
72KB
-
MD5
fd7fd716f743a4675d2990941c000aef
-
SHA1
cee40049f08648db817337339c07f99ef389e8f4
-
SHA256
4da6a062e27c782ff2d206cd546f8ae3be85a19f661943e067e31a4c5d2d8070
-
SHA512
2eb42565f6a13a895299a99b72060e59350eb58046d3a391ab2e4881ba1fb1c8ff37b4de80c3cae4ff4982b5486bc56a8da688ad3c6008830af5a856e303384f
-
SSDEEP
1536:07EcSTp0EMLUZ1Zqvqg+j7Shkc8qpsWTMnVdpBexva:0bSTqEHZ1ZqvqgFq4EpBexy
Score10/10-
Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
-