General

  • Target

    8f6f2b63732acd6f3edad1c91b1a8a39b48f237ea15a7076cbcf99b1a480f714

  • Size

    19KB

  • Sample

    240530-rtspeabf2y

  • MD5

    9a4b4a9c378401d56e562e26befccf5b

  • SHA1

    a0f4426e93248ef01fa1e616cc76ee4135636ad4

  • SHA256

    8f6f2b63732acd6f3edad1c91b1a8a39b48f237ea15a7076cbcf99b1a480f714

  • SHA512

    7adbb9ca6f1510aa7738e87cd5ff2c82a1fdd2ecaaae0d2f2df1a33921748d1216a0bee61b9fa4135d2ffe7f802b54300f5f0d825dd974540ba155341b9ca30e

  • SSDEEP

    192:aV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2G9uWF8qa1Dojjgi:0qaCF31cix+Dc4zjN9PFF46gi

Malware Config

Extracted

Family

cobaltstrike

C2

http://139.224.248.161:3557/NcXT

Attributes
  • user_agent

    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0)

Targets

    • Target

      8f6f2b63732acd6f3edad1c91b1a8a39b48f237ea15a7076cbcf99b1a480f714

    • Size

      19KB

    • MD5

      9a4b4a9c378401d56e562e26befccf5b

    • SHA1

      a0f4426e93248ef01fa1e616cc76ee4135636ad4

    • SHA256

      8f6f2b63732acd6f3edad1c91b1a8a39b48f237ea15a7076cbcf99b1a480f714

    • SHA512

      7adbb9ca6f1510aa7738e87cd5ff2c82a1fdd2ecaaae0d2f2df1a33921748d1216a0bee61b9fa4135d2ffe7f802b54300f5f0d825dd974540ba155341b9ca30e

    • SSDEEP

      192:aV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2G9uWF8qa1Dojjgi:0qaCF31cix+Dc4zjN9PFF46gi

MITRE ATT&CK Matrix

Tasks