General

  • Target

    926c1f3385e5b81c53bdab95a50f44b0c1158dbfbaefe9ba05bcc4c35365f16d

  • Size

    1.8MB

  • MD5

    b2dd95a07ace08e0cc7f371e191a49ac

  • SHA1

    5bbcf5ba75ba0a3d21ec65bf1e4de8f23a1a7e70

  • SHA256

    926c1f3385e5b81c53bdab95a50f44b0c1158dbfbaefe9ba05bcc4c35365f16d

  • SHA512

    5a103daa02138636448078809eb4f024981a8d2058d42fb33833a4c18367428d6fcc3cc50744abd5facab79a895431a3013169af114359b3d427ea1d9240e882

  • SSDEEP

    24576:snNVYtFSk5Z/Qczacxc4kU/NYEm+03KTNWh6E6T7gz:E6Ss8+/wAhWh6/g

Score
10/10

Malware Config

Extracted

Family

cobaltstrike

C2

http://152.136.100.26:80/b7Vn

Attributes
  • user_agent

    User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.1)

Signatures

  • Cobaltstrike family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 926c1f3385e5b81c53bdab95a50f44b0c1158dbfbaefe9ba05bcc4c35365f16d
    .exe windows:6 windows x64 arch:x64

    4f2f006e2ecf7172ad368f8289dc96c1


    Headers

    Imports

    Sections