Analysis

  • max time kernel
    147s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    09-06-2024 05:33

General

  • Target

    926c1f3385e5b81c53bdab95a50f44b0c1158dbfbaefe9ba05bcc4c35365f16d.exe

  • Size

    1.8MB

  • MD5

    b2dd95a07ace08e0cc7f371e191a49ac

  • SHA1

    5bbcf5ba75ba0a3d21ec65bf1e4de8f23a1a7e70

  • SHA256

    926c1f3385e5b81c53bdab95a50f44b0c1158dbfbaefe9ba05bcc4c35365f16d

  • SHA512

    5a103daa02138636448078809eb4f024981a8d2058d42fb33833a4c18367428d6fcc3cc50744abd5facab79a895431a3013169af114359b3d427ea1d9240e882

  • SSDEEP

    24576:snNVYtFSk5Z/Qczacxc4kU/NYEm+03KTNWh6E6T7gz:E6Ss8+/wAhWh6/g

Malware Config

Extracted

Family

cobaltstrike

C2

http://152.136.100.26:80/b7Vn

Attributes
  • user_agent

    User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.1)

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\926c1f3385e5b81c53bdab95a50f44b0c1158dbfbaefe9ba05bcc4c35365f16d.exe
    "C:\Users\Admin\AppData\Local\Temp\926c1f3385e5b81c53bdab95a50f44b0c1158dbfbaefe9ba05bcc4c35365f16d.exe"
    1⤵
      PID:2748

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2748-0-0x0000000048080000-0x0000000048081000-memory.dmp

      Filesize

      4KB