Analysis
-
max time kernel
148s -
max time network
149s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
09-06-2024 04:36
Static task
static1
Behavioral task
behavioral1
Sample
660db7a0f862e731c92c1d137a057dc0962ea236a2f7ded9e9ffeb85fe5ef9b4.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
660db7a0f862e731c92c1d137a057dc0962ea236a2f7ded9e9ffeb85fe5ef9b4.exe
Resource
win10v2004-20240508-en
General
-
Target
660db7a0f862e731c92c1d137a057dc0962ea236a2f7ded9e9ffeb85fe5ef9b4.exe
-
Size
19KB
-
MD5
a4a9b6597946e8fd30406aad644e5e28
-
SHA1
29f78751e6a4971dc5991bd56a393a75443e10c3
-
SHA256
660db7a0f862e731c92c1d137a057dc0962ea236a2f7ded9e9ffeb85fe5ef9b4
-
SHA512
d022fa03d1f9719a5ed04ccf71dc966027d4c3e990ab2d50cb4935a429fd0b1695cbda96eb4e6f9e42547a21a4384963c492dd01e31d0b2725ac4e51b395c9a8
-
SSDEEP
192:SV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2bQlhikCWF8qa1Dojjgi:cqaCF31cix+Dc4zjNN7FF46gi
Malware Config
Extracted
cobaltstrike
http://124.71.111.64:8888/4ydL
-
user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; NP06)
Signatures
-
Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.