cobaltstrike | 7ad682bcd46ecaac63c3e16d0bbbc3e14a8bc4ec742271a019e35a18170d72e5 | Triage

Sharing

General

Target

artifact_x64.exe
Size

19KB
Sample

240911-2ms2psxbqk
MD5

38d79034a0150380a11b96e8f492e509
SHA1

556c816b1067ea3f6bc2846d1efde248a44d4f50
SHA256

7ad682bcd46ecaac63c3e16d0bbbc3e14a8bc4ec742271a019e35a18170d72e5
SHA512

8259b5db47beeb7a37452e156cd107ee49e3b281e491392c8481ca33a4d166a5eb87611fe54af9ae119cbf4c194ca73c290ac1b38369307879c02720d4f04b6a
SSDEEP

192:KV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/22kEmmWF8qa1Dojjgi:kqaCF31cix+Dc4zjQPFF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://147.185.221.22:43296/v8x7

Attributes

user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.2; .NET4.0C)

Targets

- Target
  
  artifact_x64.exe
- Size
  
  19KB
- MD5
  
  38d79034a0150380a11b96e8f492e509
- SHA1
  
  556c816b1067ea3f6bc2846d1efde248a44d4f50
- SHA256
  
  7ad682bcd46ecaac63c3e16d0bbbc3e14a8bc4ec742271a019e35a18170d72e5
- SHA512
  
  8259b5db47beeb7a37452e156cd107ee49e3b281e491392c8481ca33a4d166a5eb87611fe54af9ae119cbf4c194ca73c290ac1b38369307879c02720d4f04b6a
- SSDEEP
  
  192:KV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/22kEmmWF8qa1Dojjgi:kqaCF31cix+Dc4zjQPFF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan