General

  • Target

    2ff6855ed5fc0dbae7db3e0f4160d5624574145ad071ed5e08379f70071b3fbe

  • Size

    17KB

  • Sample

    240623-y2kr4azgqc

  • MD5

    7d4f9fbb2c765097c5a30aa2fa32e4ef

  • SHA1

    17538727d9c3662f8d5b527615ebf8d5bf3e98ee

  • SHA256

    2ff6855ed5fc0dbae7db3e0f4160d5624574145ad071ed5e08379f70071b3fbe

  • SHA512

    756196c9a96fd4478d38fe043f63e6fbd14a7c6ccbed9037743e0f3f27a8aec8d30cb5c5bd79c19e0dc162a3b86d0e237b8dfbf8f088bc75c3033cfff87f0969

  • SSDEEP

    192:BDMAe4Ckj19RZZ6wpSfu1bKcq5uHj7khBDSeKNH4CKBUbOj6kxiY:BDMAoKz6WtKEj7aBDi5KbAY

Malware Config

Extracted

Family

cobaltstrike

C2

http://192.168.136.129:80/FYuI

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)

Targets

    • Target

      2ff6855ed5fc0dbae7db3e0f4160d5624574145ad071ed5e08379f70071b3fbe

    • Size

      17KB

    • MD5

      7d4f9fbb2c765097c5a30aa2fa32e4ef

    • SHA1

      17538727d9c3662f8d5b527615ebf8d5bf3e98ee

    • SHA256

      2ff6855ed5fc0dbae7db3e0f4160d5624574145ad071ed5e08379f70071b3fbe

    • SHA512

      756196c9a96fd4478d38fe043f63e6fbd14a7c6ccbed9037743e0f3f27a8aec8d30cb5c5bd79c19e0dc162a3b86d0e237b8dfbf8f088bc75c3033cfff87f0969

    • SSDEEP

      192:BDMAe4Ckj19RZZ6wpSfu1bKcq5uHj7khBDSeKNH4CKBUbOj6kxiY:BDMAoKz6WtKEj7aBDi5KbAY

MITRE ATT&CK Matrix

Tasks