cobaltstrike | fcf2d4eec8fbdbb8b2fbd7cd49eadfdd71eeafbdb63c4608e036e709b6163218

Analysis

max time kernel
94s
max time network
98s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
16-09-2024 14:39

Target

fcf2d4eec8fbdbb8b2fbd7cd49eadfdd71eeafbdb63c4608e036e709b6163218.exe
Size

108KB
MD5

df35cd7654decc379f6aecd2fb825bcf
SHA1

66ebaf87e1092238f080873d89c332c2105dcb40
SHA256

fcf2d4eec8fbdbb8b2fbd7cd49eadfdd71eeafbdb63c4608e036e709b6163218
SHA512

e5157d8408415f335055c34ae8a3fb4c7e7b22287b6eef764f2c515117a23e3329281af4c0ddc9337a4298b2af2fee97fec95b85b333e323c0c59022c89ce15e
SSDEEP

1536:zAX+BuezwI3vEyKs6vb+clSzkv0kWqZZrqDxcK8sWwd49dla9Y2+h0:kOB/c3b+CKkv0pqZZrAx7boYq2+h0

Score

10^/10

Family

cobaltstrike

http://103.234.72.186:22226/jquery-3.3.2.slim.min.js

Attributes

user_agent
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.5 Referer: http://code.jquery.com/ Accept-Encoding: gzip, deflate User-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko

Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
trojan backdoor cobaltstrike

C:\Users\Admin\AppData\Local\Temp\fcf2d4eec8fbdbb8b2fbd7cd49eadfdd71eeafbdb63c4608e036e709b6163218.exe
"C:\Users\Admin\AppData\Local\Temp\fcf2d4eec8fbdbb8b2fbd7cd49eadfdd71eeafbdb63c4608e036e709b6163218.exe"
1⤵
PID:3972

memory/3972-0-0x0000022B86E90000-0x0000022B86E91000-memory.dmp

Filesize
4KB

Download