cobaltstrike | 70741c5ebc8e2d875337048cedd5d6b17177d051d44c7642d812acfcb2f6f9e6 | Triage

Sharing

General

Target

70741c5ebc8e2d875337048cedd5d6b17177d051d44c7642d812acfcb2f6f9e6
Size

19KB
Sample

240920-qe56hsxgra
MD5

ad29e0e7589772959ed632754b2d0ed5
SHA1

814ad6bc7a633d96bdcf9086bc9662f9380e5571
SHA256

70741c5ebc8e2d875337048cedd5d6b17177d051d44c7642d812acfcb2f6f9e6
SHA512

bdf3473c93d341e320ee6bf79fa583c714bdcf827ca61ff6993c16bb400b9042e6e07b22a77f01d0a5f9f665aec0119d627ba90b026bee63c6d6314899286d15
SSDEEP

192:ZV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2wylWF8qa1Dojjgi:7qaCF31cix+Dc4zjxyIFF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://89.197.154.115:7700/FKtX

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; Win64; x64; Trident/6.0)

Targets

- Target
  
  70741c5ebc8e2d875337048cedd5d6b17177d051d44c7642d812acfcb2f6f9e6
- Size
  
  19KB
- MD5
  
  ad29e0e7589772959ed632754b2d0ed5
- SHA1
  
  814ad6bc7a633d96bdcf9086bc9662f9380e5571
- SHA256
  
  70741c5ebc8e2d875337048cedd5d6b17177d051d44c7642d812acfcb2f6f9e6
- SHA512
  
  bdf3473c93d341e320ee6bf79fa583c714bdcf827ca61ff6993c16bb400b9042e6e07b22a77f01d0a5f9f665aec0119d627ba90b026bee63c6d6314899286d15
- SSDEEP
  
  192:ZV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2wylWF8qa1Dojjgi:7qaCF31cix+Dc4zjxyIFF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan