General

  • Target

    af9799b1f694fc3402556ad6aaccbec9776b51e4a3a08dc40ecc81894c1ab31c.exe

  • Size

    124KB

  • Sample

    240724-y5g6davejk

  • MD5

    ce7d5344bc07d6bdacc146692ca2946a

  • SHA1

    2e2634ea60388ac8f4fc7bfa6e4561422366dc12

  • SHA256

    af9799b1f694fc3402556ad6aaccbec9776b51e4a3a08dc40ecc81894c1ab31c

  • SHA512

    689a3c7b5434e431973ef922711a6633c17d393af922473aaf2d96e87924fd7b84a92fbf9adf4bbf834e914bd149be48eb6bb7dc1c7ec4e14ee328b92ab2976b

  • SSDEEP

    3072:h+XspPuWQmWk6HYeKr5Vp+FvlCXk3CI6HzFdXyQ6+ffMWUF:hJAksYeKrhXHxd3fuF

Malware Config

Extracted

Family

cobaltstrike

C2

http://120.26.48.63:4223/O5ud

Attributes
  • user_agent

    User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.2; Trident/4.0; .NET CLR 2.0.50727)

Targets

    • Target

      af9799b1f694fc3402556ad6aaccbec9776b51e4a3a08dc40ecc81894c1ab31c.exe

    • Size

      124KB

    • MD5

      ce7d5344bc07d6bdacc146692ca2946a

    • SHA1

      2e2634ea60388ac8f4fc7bfa6e4561422366dc12

    • SHA256

      af9799b1f694fc3402556ad6aaccbec9776b51e4a3a08dc40ecc81894c1ab31c

    • SHA512

      689a3c7b5434e431973ef922711a6633c17d393af922473aaf2d96e87924fd7b84a92fbf9adf4bbf834e914bd149be48eb6bb7dc1c7ec4e14ee328b92ab2976b

    • SSDEEP

      3072:h+XspPuWQmWk6HYeKr5Vp+FvlCXk3CI6HzFdXyQ6+ffMWUF:hJAksYeKrhXHxd3fuF

MITRE ATT&CK Matrix

Tasks