cobaltstrike | 83fbd6824693bbd5703a87cf252e32660c1eba7bb6006f567d45561a03353222 | Triage

Sharing

General

Target

83fbd6824693bbd5703a87cf252e32660c1eba7bb6006f567d45561a03353222
Size

19KB
Sample

240614-rnns9sxhkk
MD5

76512f7fdf8f89bd40cae910fd53a07e
SHA1

e5ce480bf4f16f88c99b04eb9d5f203407e1a12b
SHA256

83fbd6824693bbd5703a87cf252e32660c1eba7bb6006f567d45561a03353222
SHA512

51312bcc5287e98125e1b7c944e5057d2b5d6c76219ca1c9937694342c92ed93e121c5aebca57589f044619a0f82af06344f45907c7e59b46c5b3b32d627c6fe
SSDEEP

192:hV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2rq7oz4WF8qa1Dojjgi:zqaCF31cix+Dc4zjx7oxFF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://103.234.72.141:12309/Mql3

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; Avant Browser)

Targets

- Target
  
  83fbd6824693bbd5703a87cf252e32660c1eba7bb6006f567d45561a03353222
- Size
  
  19KB
- MD5
  
  76512f7fdf8f89bd40cae910fd53a07e
- SHA1
  
  e5ce480bf4f16f88c99b04eb9d5f203407e1a12b
- SHA256
  
  83fbd6824693bbd5703a87cf252e32660c1eba7bb6006f567d45561a03353222
- SHA512
  
  51312bcc5287e98125e1b7c944e5057d2b5d6c76219ca1c9937694342c92ed93e121c5aebca57589f044619a0f82af06344f45907c7e59b46c5b3b32d627c6fe
- SSDEEP
  
  192:hV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2rq7oz4WF8qa1Dojjgi:zqaCF31cix+Dc4zjx7oxFF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan