cobaltstrike | b815800f907d69490e3a6e1362ced1f3e6dfad792a74710d81f5a0ccf099ea2d | Triage

Analysis

max time kernel
119s
max time network
124s
platform
windows7_x64
resource
win7-20231129-en
resource tags

arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
submitted
03-07-2024 15:37

Sharing

Report Analysis Logs

General

Target

b815800f907d69490e3a6e1362ced1f3e6dfad792a74710d81f5a0ccf099ea2d.dll
Size

281KB
MD5

6eeb4f8f2c511d51c639bf1fd1f0b848
SHA1

444d77b03c9f36b03d9cc25ea774009cf1bebe93
SHA256

b815800f907d69490e3a6e1362ced1f3e6dfad792a74710d81f5a0ccf099ea2d
SHA512

e2b04ffa8f8dfa494cf658b617035a836306b0d19cca6d3294de97bda7f2e929393343e4550ffcd937814c34af23e1eaec80d61db13c0905d9e2d91c4cb21407
SSDEEP

6144:1zbUWootfDCvT4ZTXzCLmIk5UD5rKM8KJ:1wufOMJ8YUDdl

Score

10^/10

cobaltstrike 0 backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

Botnet

0

Attributes

watermark
0

Signatures

Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
trojan backdoor cobaltstrike

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\b815800f907d69490e3a6e1362ced1f3e6dfad792a74710d81f5a0ccf099ea2d.dll,#1
1⤵
PID:2392

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2392-0-0x0000000001EA0000-0x0000000001EF2000-memory.dmp

Filesize
328KB

Download