General

  • Target

    8f2161545dc62796a43eacee25d23800fbe76845ca50af0e3c69f3e39b76fa52

  • Size

    19KB

  • Sample

    240609-xcedcadf2x

  • MD5

    bf60cd408b1c1a1e8a57c5945833b1b1

  • SHA1

    a45229617f157c6cba54bd1af9660b654f3c83d0

  • SHA256

    8f2161545dc62796a43eacee25d23800fbe76845ca50af0e3c69f3e39b76fa52

  • SHA512

    0770ec6889f51547470a539aaeb175fb422bb245a48cf809bdd5b616f53a314d9a43c984aa6c6435e74365232d51fb625a3ed903473d8d2a6cd547b0b747108d

  • SSDEEP

    192:xV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2XlwWF8qa1Dojjgi:DqaCF31cix+Dc4zjmvFF46gi

Malware Config

Extracted

Family

cobaltstrike

C2

http://192.168.251.132:80/JAhj

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; ; NCLIENT50_AAPCDA5841E333)

Targets

    • Target

      8f2161545dc62796a43eacee25d23800fbe76845ca50af0e3c69f3e39b76fa52

    • Size

      19KB

    • MD5

      bf60cd408b1c1a1e8a57c5945833b1b1

    • SHA1

      a45229617f157c6cba54bd1af9660b654f3c83d0

    • SHA256

      8f2161545dc62796a43eacee25d23800fbe76845ca50af0e3c69f3e39b76fa52

    • SHA512

      0770ec6889f51547470a539aaeb175fb422bb245a48cf809bdd5b616f53a314d9a43c984aa6c6435e74365232d51fb625a3ed903473d8d2a6cd547b0b747108d

    • SSDEEP

      192:xV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2XlwWF8qa1Dojjgi:DqaCF31cix+Dc4zjmvFF46gi

MITRE ATT&CK Matrix

Tasks