Analysis
-
max time kernel
141s -
max time network
140s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
20-09-2024 13:11
Static task
static1
Behavioral task
behavioral1
Sample
70741c5ebc8e2d875337048cedd5d6b17177d051d44c7642d812acfcb2f6f9e6.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
70741c5ebc8e2d875337048cedd5d6b17177d051d44c7642d812acfcb2f6f9e6.exe
Resource
win10v2004-20240802-en
General
-
Target
70741c5ebc8e2d875337048cedd5d6b17177d051d44c7642d812acfcb2f6f9e6.exe
-
Size
19KB
-
MD5
ad29e0e7589772959ed632754b2d0ed5
-
SHA1
814ad6bc7a633d96bdcf9086bc9662f9380e5571
-
SHA256
70741c5ebc8e2d875337048cedd5d6b17177d051d44c7642d812acfcb2f6f9e6
-
SHA512
bdf3473c93d341e320ee6bf79fa583c714bdcf827ca61ff6993c16bb400b9042e6e07b22a77f01d0a5f9f665aec0119d627ba90b026bee63c6d6314899286d15
-
SSDEEP
192:ZV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2wylWF8qa1Dojjgi:7qaCF31cix+Dc4zjxyIFF46gi
Malware Config
Extracted
cobaltstrike
http://89.197.154.115:7700/FKtX
-
user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; Win64; x64; Trident/6.0)
Signatures
-
Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
Processes
Network
- No results found
-
152 B 3
-
152 B 3
-
152 B 3
-
152 B 3
-
152 B 3
-
152 B 3
-
152 B 3