Analysis
-
max time kernel
147s -
max time network
150s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
25-06-2024 13:20
Static task
static1
Behavioral task
behavioral1
Sample
6cd7046ec2e37258a053327fd3cf148d2ed56fd6c091028d2edb4f065d8d53b9.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
6cd7046ec2e37258a053327fd3cf148d2ed56fd6c091028d2edb4f065d8d53b9.exe
Resource
win10v2004-20240508-en
General
-
Target
6cd7046ec2e37258a053327fd3cf148d2ed56fd6c091028d2edb4f065d8d53b9.exe
-
Size
2.4MB
-
MD5
1fe7da52e4ee3576736fc84ad109939c
-
SHA1
abcd1268294b6b55b0d394e91357242775599cf7
-
SHA256
6cd7046ec2e37258a053327fd3cf148d2ed56fd6c091028d2edb4f065d8d53b9
-
SHA512
7bb7c229fe8e70b7cb776f0fcd9974e497f43e40c10f9d0dace36c30a6e5d8b79f8a2c48645cddba70370787ca167f49c0fa6da6f0b02136df9e0c7cabab29c5
-
SSDEEP
49152:19mz2RHAvuujHO929dJKEKnv5J5VSCtL:So29DKFPVX
Malware Config
Extracted
cobaltstrike
http://24kawys.filegear-sg.me:8443/83IC62c7
-
user_agent
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36 Host: 24kawys.filegear-sg.me
Signatures
-
Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.