Analysis
-
max time kernel
149s -
max time network
155s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
09-06-2024 04:38
Static task
static1
Behavioral task
behavioral1
Sample
8d0828947b468475ab8a51606fbf28c5f320751fe111b7dae1496c1eeb2b822d.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
8d0828947b468475ab8a51606fbf28c5f320751fe111b7dae1496c1eeb2b822d.exe
Resource
win10v2004-20240426-en
General
-
Target
8d0828947b468475ab8a51606fbf28c5f320751fe111b7dae1496c1eeb2b822d.exe
-
Size
19KB
-
MD5
a2076b7317fd9d289e740b7bd4ea65fc
-
SHA1
ca351ef70f1abaea72691742100558220fca670f
-
SHA256
8d0828947b468475ab8a51606fbf28c5f320751fe111b7dae1496c1eeb2b822d
-
SHA512
06b901d11ef5f42f138f0138985a1ae6ace0d0a99845b7cf2a9a3bb5e24b5665fe5ccdb9a7abedb972c8f35c3ab82df045264a2b8816f779a5d5b367094b1c1f
-
SSDEEP
192:KV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2YCqWF8qa1Dojjgi:kqaCF31cix+Dc4zj4FF46gi
Malware Config
Extracted
cobaltstrike
http://39.100.94.68:80/VMfT
-
user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; MASB)
Signatures
-
Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.