cobaltstrike | 938c8c214194ea7f05aa136fa1afb15c433f6ebbebb40f8ed72f71e3112fc7b3 | Triage

Sharing

General

Target

938c8c214194ea7f05aa136fa1afb15c433f6ebbebb40f8ed72f71e3112fc7b3
Size

19KB
Sample

240806-lxn8hawdpp
MD5

b76868c49b05c6d392279967dcd43823
SHA1

93da7a7e08d6e6eae59b80ecf9c8031a5a821ef5
SHA256

938c8c214194ea7f05aa136fa1afb15c433f6ebbebb40f8ed72f71e3112fc7b3
SHA512

012c51d8e1a6e51a711d5272a1a18153332fcec16d902963816118794d1170f7ed7a06ca9939e6bb0c8db70b207e31e1f9934b505a6c71b7b27df5dcaeb3313f
SSDEEP

192:PV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2YEGbkXWF8qa1Dojjgi:JqaCF31cix+Dc4zj4GTFF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://101.34.54.173:62009/1jxJ

Attributes

user_agent
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0

Targets

- Target
  
  938c8c214194ea7f05aa136fa1afb15c433f6ebbebb40f8ed72f71e3112fc7b3
- Size
  
  19KB
- MD5
  
  b76868c49b05c6d392279967dcd43823
- SHA1
  
  93da7a7e08d6e6eae59b80ecf9c8031a5a821ef5
- SHA256
  
  938c8c214194ea7f05aa136fa1afb15c433f6ebbebb40f8ed72f71e3112fc7b3
- SHA512
  
  012c51d8e1a6e51a711d5272a1a18153332fcec16d902963816118794d1170f7ed7a06ca9939e6bb0c8db70b207e31e1f9934b505a6c71b7b27df5dcaeb3313f
- SSDEEP
  
  192:PV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2YEGbkXWF8qa1Dojjgi:JqaCF31cix+Dc4zj4GTFF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan