cobaltstrike | 71462f8e4e1eb076819c402855e1b4aceade0294794e4efc3dfd2ea81d401f89

Analysis

max time kernel
148s
max time network
149s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
29-05-2024 14:11

Target

71462f8e4e1eb076819c402855e1b4aceade0294794e4efc3dfd2ea81d401f89.exe
Size

1.5MB
MD5

af415dcf9751dc41c5920f6ee5d1a59f
SHA1

cb68bbb23cffd0d54b954cb024bc94a0d4d0e1bc
SHA256

71462f8e4e1eb076819c402855e1b4aceade0294794e4efc3dfd2ea81d401f89
SHA512

f44e4c975b17c0ec8b5a1fa4185ab4bed08e07815fb0d3f5f217502944d6d19fe1b1daa567807a60573ed6fc5daeadcff31f80e52d5267b68930b8038548afe5
SSDEEP

24576:o4CxfAo3/IrKcT3EbW9cuXFN/D3YgjB1PurDWK8:o4E3/IrhT3EbWvDDYgjDmrDWK8

Score

10^/10

Family

cobaltstrike

http://192.168.158.128:8443/_/shared/1.0/content/js/asyncchunk/convergedlogin_ea3e62a2bdfb2b2ee8c8.js

Attributes

user_agent
Accept: */* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate User-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko

Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
trojan backdoor cobaltstrike

C:\Users\Admin\AppData\Local\Temp\71462f8e4e1eb076819c402855e1b4aceade0294794e4efc3dfd2ea81d401f89.exe
"C:\Users\Admin\AppData\Local\Temp\71462f8e4e1eb076819c402855e1b4aceade0294794e4efc3dfd2ea81d401f89.exe"
1⤵
PID:2676

memory/2676-0-0x0000000028850000-0x0000000028852000-memory.dmp

Filesize
8KB

Download