General

  • Target

    e996392c6a88c915789e8df277032120967c101eef74f7acdd06e41da4f26136

  • Size

    72KB

  • Sample

    240527-p66qpaed66

  • MD5

    5130037d87bdedaca1ae91d518640caa

  • SHA1

    4407def3c639eeac53a8008cd6490b0330425e13

  • SHA256

    e996392c6a88c915789e8df277032120967c101eef74f7acdd06e41da4f26136

  • SHA512

    2b3c3f01d8be3aa33399e8ea6b56943a2b8249131b9f1b41482dd123e249c443f62369436c5d6b356d459ce535f802003374cf48715a7ddcedc28bb07e5ca3e9

  • SSDEEP

    1536:a7EcSTp0EMLUZ1Zqvqg+j7Shkc8qpsWTMnVdpB6a:abSTqEHZ1ZqvqgFq4EpB9

Malware Config

Extracted

Family

cobaltstrike

C2

http://121.37.205.34:80/static/image/refresh.png

Attributes
  • user_agent

    Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Referer: https://www.tencent.com/zh-cn/ Accept-Encoding: deflate User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.66 Safari/537.36 Edg/103.0.1264.44

Targets

    • Target

      e996392c6a88c915789e8df277032120967c101eef74f7acdd06e41da4f26136

    • Size

      72KB

    • MD5

      5130037d87bdedaca1ae91d518640caa

    • SHA1

      4407def3c639eeac53a8008cd6490b0330425e13

    • SHA256

      e996392c6a88c915789e8df277032120967c101eef74f7acdd06e41da4f26136

    • SHA512

      2b3c3f01d8be3aa33399e8ea6b56943a2b8249131b9f1b41482dd123e249c443f62369436c5d6b356d459ce535f802003374cf48715a7ddcedc28bb07e5ca3e9

    • SSDEEP

      1536:a7EcSTp0EMLUZ1Zqvqg+j7Shkc8qpsWTMnVdpB6a:abSTqEHZ1ZqvqgFq4EpB9

MITRE ATT&CK Matrix

Tasks