General
-
Target
2376-0-0x00000000003C0000-0x00000000003C1000-memory.dmp
-
Size
4KB
-
MD5
9aa64027851487f2a35fe822abd40203
-
SHA1
2213b2750dc89d8ff4afc4dd5a045dac9bff620f
-
SHA256
bcd2660296c63bdd5a54a2653cde3a1f30ab4e26ddaaffabbc0f056db26e287a
-
SHA512
41b774c09f8de0deea70158d1d255c6b4151ad5b1b7dde27551cbd06712bd0d29e80b207b73bc24112643c6676f61425421eaf172d24fe1ef77fa85c2f9b4036
Score
10/10
Malware Config
Extracted
Family
cobaltstrike
C2
http://172.18.0.1:80/4qJn
Attributes
-
user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.2; .NET CLR 2.0.50727)
Signatures
-
Cobaltstrike family
Files
-
2376-0-0x00000000003C0000-0x00000000003C1000-memory.dmp