General

  • Target

    2376-0-0x00000000003C0000-0x00000000003C1000-memory.dmp

  • Size

    4KB

  • MD5

    9aa64027851487f2a35fe822abd40203

  • SHA1

    2213b2750dc89d8ff4afc4dd5a045dac9bff620f

  • SHA256

    bcd2660296c63bdd5a54a2653cde3a1f30ab4e26ddaaffabbc0f056db26e287a

  • SHA512

    41b774c09f8de0deea70158d1d255c6b4151ad5b1b7dde27551cbd06712bd0d29e80b207b73bc24112643c6676f61425421eaf172d24fe1ef77fa85c2f9b4036

Score
10/10

Malware Config

Extracted

Family

cobaltstrike

C2

http://172.18.0.1:80/4qJn

Attributes
  • user_agent

    User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.2; .NET CLR 2.0.50727)

Signatures

Files

  • 2376-0-0x00000000003C0000-0x00000000003C1000-memory.dmp