Overview

overview

10

Static

static

10

8f9d492c84...fc.dll

windows7-x64

1

8f9d492c84...fc.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    8f9d492c8407781e53e07bda9f5c42ac08f753fbd1fe78a66b92d3a71a12c5fc

  • Size

    6KB

  • MD5

    322777200a6a833659dbd99ff8fe39c0

  • SHA1

    06135ded5dcaf89c4711e003a382d0f913e1dbc7

  • SHA256

    8f9d492c8407781e53e07bda9f5c42ac08f753fbd1fe78a66b92d3a71a12c5fc

  • SHA512

    bd05d1596694df28d7bf7f0940cf06816e66def7d542f08d5e9cb4fbb4dcb948e839ae5f1ca83da3c9662b43ba26e51817158fb80a67c8ec9e4b421268f6376b

  • SSDEEP

    96:dK7S3+uy11mLLVJP9I97HHfb18gJeTkqe5PelpwLS:dK43W/b5ATfe5PefF

Score
10/10
cobaltstrike

Malware Config

Extracted

Family

cobaltstrike

C2

http://192.168.73.129:9999/ZIVd

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; NP02)

Signatures

  • Cobaltstrike family
    cobaltstrike
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 8f9d492c8407781e53e07bda9f5c42ac08f753fbd1fe78a66b92d3a71a12c5fc
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections