cobaltstrike | 62db5936e72724d703479fc61c9bd5dd13f398ccb980e42c09cd92edcc1c9b46 | Triage

Sharing

General

Target

62db5936e72724d703479fc61c9bd5dd13f398ccb980e42c09cd92edcc1c9b46
Size

11KB
Sample

240908-lwcs3syhnl
MD5

bacb43877ca91f659bc04360d9f5634c
SHA1

a0c73b440609dc49f0df6be9bc585895318bb447
SHA256

62db5936e72724d703479fc61c9bd5dd13f398ccb980e42c09cd92edcc1c9b46
SHA512

88e21b30579e128882e1e404980df8804acf72fe6c6b293cfcd11e60a45c1ae0b07eb8e960f57f4e503150a86d30245a810e73a9ecf9e67e9c1ab090e3062777
SSDEEP

192:QmgQHu4ElCO+YQ6ttYpPm54Z3Q5tfBD1txZ:QpQHu4iQ1z3ixZ

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://service-9cjgv9d1-1327547884.bj.tencentapigw.com.cn:443/bootstrap-2.min.js

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/5.0) Host: service-9cjgv9d1-1327547884.bj.tencentapigw.com.cn

Targets

- Target
  
  62db5936e72724d703479fc61c9bd5dd13f398ccb980e42c09cd92edcc1c9b46
- Size
  
  11KB
- MD5
  
  bacb43877ca91f659bc04360d9f5634c
- SHA1
  
  a0c73b440609dc49f0df6be9bc585895318bb447
- SHA256
  
  62db5936e72724d703479fc61c9bd5dd13f398ccb980e42c09cd92edcc1c9b46
- SHA512
  
  88e21b30579e128882e1e404980df8804acf72fe6c6b293cfcd11e60a45c1ae0b07eb8e960f57f4e503150a86d30245a810e73a9ecf9e67e9c1ab090e3062777
- SSDEEP
  
  192:QmgQHu4ElCO+YQ6ttYpPm54Z3Q5tfBD1txZ:QpQHu4iQ1z3ixZ
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan