General

  • Target

    2a161da21d50d9fc21768b10179ecbabef3ad304c1fb05dc251dc56e5e80d5e8

  • Size

    19KB

  • Sample

    240622-r834pawgjk

  • MD5

    c78f4830e753e5557f01dac35a25227e

  • SHA1

    628f6fc515b11d3a0da41bfad2095596dbcd7050

  • SHA256

    2a161da21d50d9fc21768b10179ecbabef3ad304c1fb05dc251dc56e5e80d5e8

  • SHA512

    9fcf5b478b9dda3f1f2970c6075d97fd41ec5a4d80029fac17fe329fdf9905e6ca8ed8917f8f079a7613ea02c711cfe43e41ea6b9e4ea39f3a2c863966d2b9ad

  • SSDEEP

    192:7V7qaCF6Op1t2dobVXujRDcBaXWQjwOT/29JYwL0oWF8qa1Dojjgi:VqaCF31cix+Dc4zjNdFF46gi

Malware Config

Extracted

Family

cobaltstrike

C2

http://10.8.0.168:80/snD8

Attributes
  • user_agent

    User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.3; .NET CLR 2.0.50727)

Targets

    • Target

      2a161da21d50d9fc21768b10179ecbabef3ad304c1fb05dc251dc56e5e80d5e8

    • Size

      19KB

    • MD5

      c78f4830e753e5557f01dac35a25227e

    • SHA1

      628f6fc515b11d3a0da41bfad2095596dbcd7050

    • SHA256

      2a161da21d50d9fc21768b10179ecbabef3ad304c1fb05dc251dc56e5e80d5e8

    • SHA512

      9fcf5b478b9dda3f1f2970c6075d97fd41ec5a4d80029fac17fe329fdf9905e6ca8ed8917f8f079a7613ea02c711cfe43e41ea6b9e4ea39f3a2c863966d2b9ad

    • SSDEEP

      192:7V7qaCF6Op1t2dobVXujRDcBaXWQjwOT/29JYwL0oWF8qa1Dojjgi:VqaCF31cix+Dc4zjNdFF46gi

MITRE ATT&CK Matrix

Tasks