cobaltstrike | f4544b61fbc32ed2cfa98cf54bfc126800ba5378b722c529978e5fe2fd99c327 | Triage

Sharing

General

Target

f4544b61fbc32ed2cfa98cf54bfc126800ba5378b722c529978e5fe2fd99c327
Size

19KB
Sample

240922-b416jawekb
MD5

6d14ff7b9a6b9658f8b7cdcd5d9f7efd
SHA1

4665227d24d55a04bfa097a619d78a549e530799
SHA256

f4544b61fbc32ed2cfa98cf54bfc126800ba5378b722c529978e5fe2fd99c327
SHA512

45bfadbe9f9ca2f6f562c2532284d3aa346909884c0159595f6e0e1ed1fd55e327690abc71a68d24047b59cfa218b5ad74635758466f1a262323a48efaed6e0b
SSDEEP

192:WV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/23Dt3WF8qa1Dojjgi:wqaCF31cix+Dc4zjw8FF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://192.168.10.5:7777/HdbO

Attributes

user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0)

Targets

- Target
  
  f4544b61fbc32ed2cfa98cf54bfc126800ba5378b722c529978e5fe2fd99c327
- Size
  
  19KB
- MD5
  
  6d14ff7b9a6b9658f8b7cdcd5d9f7efd
- SHA1
  
  4665227d24d55a04bfa097a619d78a549e530799
- SHA256
  
  f4544b61fbc32ed2cfa98cf54bfc126800ba5378b722c529978e5fe2fd99c327
- SHA512
  
  45bfadbe9f9ca2f6f562c2532284d3aa346909884c0159595f6e0e1ed1fd55e327690abc71a68d24047b59cfa218b5ad74635758466f1a262323a48efaed6e0b
- SSDEEP
  
  192:WV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/23Dt3WF8qa1Dojjgi:wqaCF31cix+Dc4zjw8FF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan