cobaltstrike | 5746181f84d2acfa43964c42a33dbb8416f1a21c12126e1d86e0d5c2b955d440 | Triage

Sharing

General

Target

5746181f84d2acfa43964c42a33dbb8416f1a21c12126e1d86e0d5c2b955d440
Size

19KB
Sample

240907-1dyedswerp
MD5

cc202fdde699642d836feeecdc91fc54
SHA1

423a02661e731c347d5b6824ddc57cdddc191d52
SHA256

5746181f84d2acfa43964c42a33dbb8416f1a21c12126e1d86e0d5c2b955d440
SHA512

950bfe43f9a9847a3bd87c62aeac0bf15afc75dfeaa0bf1be80d0ae173060e51bd8f50f00cd9af50ddc77774a9c31e3e943d5ba79b7ab297f90cbe0dcf986990
SSDEEP

192:6V7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2fLmmWF8qa1Dojjgi:UqaCF31cix+Dc4zjOLuFF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://112.124.35.130:801/DiCm

Attributes

user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)

Targets

- Target
  
  5746181f84d2acfa43964c42a33dbb8416f1a21c12126e1d86e0d5c2b955d440
- Size
  
  19KB
- MD5
  
  cc202fdde699642d836feeecdc91fc54
- SHA1
  
  423a02661e731c347d5b6824ddc57cdddc191d52
- SHA256
  
  5746181f84d2acfa43964c42a33dbb8416f1a21c12126e1d86e0d5c2b955d440
- SHA512
  
  950bfe43f9a9847a3bd87c62aeac0bf15afc75dfeaa0bf1be80d0ae173060e51bd8f50f00cd9af50ddc77774a9c31e3e943d5ba79b7ab297f90cbe0dcf986990
- SSDEEP
  
  192:6V7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2fLmmWF8qa1Dojjgi:UqaCF31cix+Dc4zjOLuFF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan