Overview

overview

10

Static

static

3

0265101119...bc.exe

windows7-x64

10

0265101119...bc.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    12-09-2024 04:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0265101119eeef07d80177b1b65b0c19b3b3f032f77db34e8021cf1c553a74bc.exe

  • Size

    19KB

  • MD5

    785bfde368c9a7513d382c93dad17c81

  • SHA1

    391756c94f49627bb8932886a53aa3530db305bc

  • SHA256

    0265101119eeef07d80177b1b65b0c19b3b3f032f77db34e8021cf1c553a74bc

  • SHA512

    733d525c4f220ec1659bd2514ddb57be8d82e64e32a370d87dabd4a97206b9bd33b7857c3f6c4ae6b605ac742438c3be6e9611cb41869c457bd65204574d4ca5

  • SSDEEP

    192:yoV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/27hpX6DXWF8qa1Dojjgi:JqaCF31cix+Dc4zjshp6mFF46gi

Score
10/10
cobaltstrikebackdoortrojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://8.219.15.69:4444/9xUW

Attributes
  • user_agent

    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\0265101119eeef07d80177b1b65b0c19b3b3f032f77db34e8021cf1c553a74bc.exe
    "C:\Users\Admin\AppData\Local\Temp\0265101119eeef07d80177b1b65b0c19b3b3f032f77db34e8021cf1c553a74bc.exe"
    1⤵
      PID:2184

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2184-0-0x0000000000020000-0x0000000000021000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2184-1-0x0000000000400000-0x000000000040C000-memory.dmp

      Filesize

      48KB

      Download