General
-
Target
2ff6855ed5fc0dbae7db3e0f4160d5624574145ad071ed5e08379f70071b3fbe
-
Size
17KB
-
Sample
240623-y2kr4azgqc
-
MD5
7d4f9fbb2c765097c5a30aa2fa32e4ef
-
SHA1
17538727d9c3662f8d5b527615ebf8d5bf3e98ee
-
SHA256
2ff6855ed5fc0dbae7db3e0f4160d5624574145ad071ed5e08379f70071b3fbe
-
SHA512
756196c9a96fd4478d38fe043f63e6fbd14a7c6ccbed9037743e0f3f27a8aec8d30cb5c5bd79c19e0dc162a3b86d0e237b8dfbf8f088bc75c3033cfff87f0969
-
SSDEEP
192:BDMAe4Ckj19RZZ6wpSfu1bKcq5uHj7khBDSeKNH4CKBUbOj6kxiY:BDMAoKz6WtKEj7aBDi5KbAY
Static task
static1
Behavioral task
behavioral1
Sample
2ff6855ed5fc0dbae7db3e0f4160d5624574145ad071ed5e08379f70071b3fbe.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2ff6855ed5fc0dbae7db3e0f4160d5624574145ad071ed5e08379f70071b3fbe.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
cobaltstrike
http://192.168.136.129:80/FYuI
-
user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Targets
-
-
Target
2ff6855ed5fc0dbae7db3e0f4160d5624574145ad071ed5e08379f70071b3fbe
-
Size
17KB
-
MD5
7d4f9fbb2c765097c5a30aa2fa32e4ef
-
SHA1
17538727d9c3662f8d5b527615ebf8d5bf3e98ee
-
SHA256
2ff6855ed5fc0dbae7db3e0f4160d5624574145ad071ed5e08379f70071b3fbe
-
SHA512
756196c9a96fd4478d38fe043f63e6fbd14a7c6ccbed9037743e0f3f27a8aec8d30cb5c5bd79c19e0dc162a3b86d0e237b8dfbf8f088bc75c3033cfff87f0969
-
SSDEEP
192:BDMAe4Ckj19RZZ6wpSfu1bKcq5uHj7khBDSeKNH4CKBUbOj6kxiY:BDMAoKz6WtKEj7aBDi5KbAY
Score10/10 -