General

  • Target

    fcdfebfbaa02ce277a2ff3456cc3c72b5110e51e281b66ac7a88cbec32c73512

  • Size

    19KB

  • Sample

    240623-lrtwss1hql

  • MD5

    9cfb94ad186ab33e1307b1f71abf0470

  • SHA1

    8b0992b0be4c3f9d131a398b35dfd5c6e3011cce

  • SHA256

    fcdfebfbaa02ce277a2ff3456cc3c72b5110e51e281b66ac7a88cbec32c73512

  • SHA512

    d7e0bba14ab9e0e725929daa024868f8fd48b797c9727c857024e7ebd7c2691ae1f7b1de4eb23508e2635a17418a8094d2262bca1aea39671cbfa5e6d40c8c99

  • SSDEEP

    192:fV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2+mWWF8qa1Dojjgi:ZqaCF31cix+Dc4zjpUFF46gi

Malware Config

Extracted

Family

cobaltstrike

C2

http://10.16.25.132:80/lfJA

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0; MASP)

Targets

    • Target

      fcdfebfbaa02ce277a2ff3456cc3c72b5110e51e281b66ac7a88cbec32c73512

    • Size

      19KB

    • MD5

      9cfb94ad186ab33e1307b1f71abf0470

    • SHA1

      8b0992b0be4c3f9d131a398b35dfd5c6e3011cce

    • SHA256

      fcdfebfbaa02ce277a2ff3456cc3c72b5110e51e281b66ac7a88cbec32c73512

    • SHA512

      d7e0bba14ab9e0e725929daa024868f8fd48b797c9727c857024e7ebd7c2691ae1f7b1de4eb23508e2635a17418a8094d2262bca1aea39671cbfa5e6d40c8c99

    • SSDEEP

      192:fV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2+mWWF8qa1Dojjgi:ZqaCF31cix+Dc4zjpUFF46gi

MITRE ATT&CK Matrix

Tasks