General

  • Target

    d6c331b4fe539433aef8f663f141871031592cc9fdc6422d4b00f329fbc8535c

  • Size

    19KB

  • Sample

    240530-rwsr7acg79

  • MD5

    af4af8cb960d92ad619b8728340dbc66

  • SHA1

    0f8c3fd04a3bf589ce1ccb23b58f9a37dcd7b66c

  • SHA256

    d6c331b4fe539433aef8f663f141871031592cc9fdc6422d4b00f329fbc8535c

  • SHA512

    c2485890b0df137499e53748ee42c71ac7be73a62a4a8dfe15c3972c9700040396fdee7af29de0fc6d3b391400deb6fa75dcf4d03ade61e8b7823cb385e5094f

  • SSDEEP

    192:4V7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2PHlWF8qa1Dojjgi:qqaCF31cix+Dc4zj7FF46gi

Malware Config

Extracted

Family

cobaltstrike

C2

http://120.78.74.63:11111/Io7n

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; WOW64; Trident/6.0; Touch; MALCJS)

Targets

    • Target

      d6c331b4fe539433aef8f663f141871031592cc9fdc6422d4b00f329fbc8535c

    • Size

      19KB

    • MD5

      af4af8cb960d92ad619b8728340dbc66

    • SHA1

      0f8c3fd04a3bf589ce1ccb23b58f9a37dcd7b66c

    • SHA256

      d6c331b4fe539433aef8f663f141871031592cc9fdc6422d4b00f329fbc8535c

    • SHA512

      c2485890b0df137499e53748ee42c71ac7be73a62a4a8dfe15c3972c9700040396fdee7af29de0fc6d3b391400deb6fa75dcf4d03ade61e8b7823cb385e5094f

    • SSDEEP

      192:4V7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2PHlWF8qa1Dojjgi:qqaCF31cix+Dc4zj7FF46gi

MITRE ATT&CK Matrix

Tasks