General

  • Target

    9b06edf93116606ddfce9e2be1d91fccc37e6de8177357390573997993196ad9.exe

  • Size

    19KB

  • Sample

    240725-ff4c7szblk

  • MD5

    001ff471704fbd1298d9d1e2725b8cb7

  • SHA1

    da863ae311ed74a0461c36165eb83a1f5ed05425

  • SHA256

    9b06edf93116606ddfce9e2be1d91fccc37e6de8177357390573997993196ad9

  • SHA512

    4709da67f62503061b2447622386ac3e25dd91c7ff8b127f7b97c54a138d36a014b4a56fe8b5bf8b93a6c973f5543e509aa81a82889779db55bb0e4a26b6566b

  • SSDEEP

    192:6V7qaCF6Op1t2dobVXujRDcBaXWQjwOT/21xOVQWF8qa1Dojjgi:UqaCF31cix+Dc4zj5V1FF46gi

Malware Config

Extracted

Family

cobaltstrike

C2

http://service-0heq5aek-1325313187.gz.tencentapigw.com.cn:80/bootstrap-2.min.js

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/5.0)

Targets

    • Target

      9b06edf93116606ddfce9e2be1d91fccc37e6de8177357390573997993196ad9.exe

    • Size

      19KB

    • MD5

      001ff471704fbd1298d9d1e2725b8cb7

    • SHA1

      da863ae311ed74a0461c36165eb83a1f5ed05425

    • SHA256

      9b06edf93116606ddfce9e2be1d91fccc37e6de8177357390573997993196ad9

    • SHA512

      4709da67f62503061b2447622386ac3e25dd91c7ff8b127f7b97c54a138d36a014b4a56fe8b5bf8b93a6c973f5543e509aa81a82889779db55bb0e4a26b6566b

    • SSDEEP

      192:6V7qaCF6Op1t2dobVXujRDcBaXWQjwOT/21xOVQWF8qa1Dojjgi:UqaCF31cix+Dc4zj5V1FF46gi

MITRE ATT&CK Matrix

Tasks