cobaltstrike | 45f726c68e3d56edd4031fa77b4d26883625742231347e0b848c9d9d923f0ed5

Analysis

max time kernel
147s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
25-09-2024 05:39

Target

45f726c68e3d56edd4031fa77b4d26883625742231347e0b848c9d9d923f0ed5.exe
Size

2.0MB
MD5

dcd4550a15c84784ede698edbb317eda
SHA1

1579644109aef0b454da96c89103e10fe8910ad2
SHA256

45f726c68e3d56edd4031fa77b4d26883625742231347e0b848c9d9d923f0ed5
SHA512

6257a37ba457914a1c4454c9c3626b2232c2d0544c731835117046b9be9e57ff54af5916418c140c75a6febfd69b0981dbc7340e40cc928b5f75b12f8fe5011d
SSDEEP

24576:3xH7AzDuIGnDFdNuumwRjTMIUw3mHsb/vX0FMxS:J7AzDu/bwueIBx

Score

10^/10

Family

cobaltstrike

http://10.18.204.194:86/cXJX

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0)

Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
trojan backdoor cobaltstrike

C:\Users\Admin\AppData\Local\Temp\45f726c68e3d56edd4031fa77b4d26883625742231347e0b848c9d9d923f0ed5.exe
"C:\Users\Admin\AppData\Local\Temp\45f726c68e3d56edd4031fa77b4d26883625742231347e0b848c9d9d923f0ed5.exe"
1⤵
PID:2628

memory/2628-0-0x0000021ADF3C0000-0x0000021ADF3C1000-memory.dmp

Filesize
4KB

Download