Analysis
-
max time kernel
120s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system -
submitted
30/07/2024, 02:40
Static task
static1
Behavioral task
behavioral1
Sample
e129ee72f0bd796d7cee6b721cae70ed540e178a49607af64947e2329aa76bae.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
e129ee72f0bd796d7cee6b721cae70ed540e178a49607af64947e2329aa76bae.exe
Resource
win10v2004-20240709-en
General
-
Target
e129ee72f0bd796d7cee6b721cae70ed540e178a49607af64947e2329aa76bae.exe
-
Size
19KB
-
MD5
55e6cc81525f58cf81496b1f13f555b3
-
SHA1
85d4d2df6c9b523fa46e1d36651250db9aca3c41
-
SHA256
e129ee72f0bd796d7cee6b721cae70ed540e178a49607af64947e2329aa76bae
-
SHA512
503e306ad433b05eaadab696f000dd8229654bb6322ba4130baf25a444c5696412d5ace99d8d2eae2fa5c63add4cc160af5849dc5cb41504fd1b5fe8dbc6bb87
-
SSDEEP
192:cV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2TgTkr+HQWF8qa1Dojjgi:+qaCF31cix+Dc4zjygFF46gi
Malware Config
Extracted
cobaltstrike
http://23.94.247.40:189/jW6f
-
user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Signatures
-
Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.