General
-
Target
af10597a2d8625ceaea4f6d5b3945985f7e69742c88ddb9080c40842f5522644
-
Size
19KB
-
Sample
240611-rwc2qszglb
-
MD5
e4f6d075126b3d3daceac7f0f904e64c
-
SHA1
7f76bf68c9ac107f11264af4559fd498f7f12d12
-
SHA256
af10597a2d8625ceaea4f6d5b3945985f7e69742c88ddb9080c40842f5522644
-
SHA512
0fbb1f1a57c6b02d505d32c13e32dcb7c46b41c0a3c8d503353e196bb3dccbf87880fea79e3d97fa6fedcada2a41d68a1891336a2a8830ed068d2173cd58fb5b
-
SSDEEP
192:NeV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2g0sUWF8qa1Dojjgi:NoqaCF31cix+Dc4zj1HhFF46gi
Malware Config
Extracted
cobaltstrike
http://111.230.212.37:80/threatbook.slim.min.js
-
user_agent
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.5 Referer: http://code.threatbook.com/ Accept-Encoding: gzip, deflate User-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko
Targets
-
-
Target
af10597a2d8625ceaea4f6d5b3945985f7e69742c88ddb9080c40842f5522644
-
Size
19KB
-
MD5
e4f6d075126b3d3daceac7f0f904e64c
-
SHA1
7f76bf68c9ac107f11264af4559fd498f7f12d12
-
SHA256
af10597a2d8625ceaea4f6d5b3945985f7e69742c88ddb9080c40842f5522644
-
SHA512
0fbb1f1a57c6b02d505d32c13e32dcb7c46b41c0a3c8d503353e196bb3dccbf87880fea79e3d97fa6fedcada2a41d68a1891336a2a8830ed068d2173cd58fb5b
-
SSDEEP
192:NeV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2g0sUWF8qa1Dojjgi:NoqaCF31cix+Dc4zj1HhFF46gi
Score10/10-
Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
-