Analysis
-
max time kernel
92s -
max time network
94s -
platform
windows10-2004_x64 -
resource
win10v2004-20240426-en -
resource tags
arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system -
submitted
09-06-2024 07:32
Static task
static1
Behavioral task
behavioral1
Sample
1a8fd85b58e2a9a87135bd56c98c84397537a1be2309c0d20047affc45da64fb.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
1a8fd85b58e2a9a87135bd56c98c84397537a1be2309c0d20047affc45da64fb.exe
Resource
win10v2004-20240426-en
General
-
Target
1a8fd85b58e2a9a87135bd56c98c84397537a1be2309c0d20047affc45da64fb.exe
-
Size
19KB
-
MD5
5cab2ac37a96a91e1acd47026310646f
-
SHA1
85584bbf90f7d1f9bf382617062dd49bd9b6be66
-
SHA256
1a8fd85b58e2a9a87135bd56c98c84397537a1be2309c0d20047affc45da64fb
-
SHA512
bbdaea255cb58f2386e8acedd8e19124e04251a4f555476cde47e62b9851f81882519e91c803296a89c9904e568f2be6915633577c7d002f553d2c223d7c8261
-
SSDEEP
192:NV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2GShFVlWF8qa1Dojjgi:/qaCF31cix+Dc4zj0xIFF46gi
Malware Config
Extracted
cobaltstrike
http://47.236.16.67:8890/LExT
-
user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; WOW64; Trident/6.0)
Signatures
-
Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.