cobaltstrike | 07c68acf75eeb035f42ae3630f4039d6ecac90d78ae4c8a009f2459ec8d153c1 | Triage

Sharing

General

Target

07c68acf75eeb035f42ae3630f4039d6ecac90d78ae4c8a009f2459ec8d153c1
Size

19KB
Sample

240925-mcph7szdrk
MD5

5bedf97a725f969a4056301ef1acd907
SHA1

6d4909e4030cdde9417910dced6156654e77344c
SHA256

07c68acf75eeb035f42ae3630f4039d6ecac90d78ae4c8a009f2459ec8d153c1
SHA512

a777ee5db4ec923f71132dd2092fb7b207214ebf4c44850f343db37fcef6ae8a1bd2f5af785707e8cda7543e19ddad85473fa1ff92b1ab783fc304d914e3b346
SSDEEP

192:kV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2ObqWF8qa1Dojjgi:WqaCF31cix+Dc4zj3FF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://116.63.204.246:4455/oVKM

Attributes

user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1)

Targets

- Target
  
  07c68acf75eeb035f42ae3630f4039d6ecac90d78ae4c8a009f2459ec8d153c1
- Size
  
  19KB
- MD5
  
  5bedf97a725f969a4056301ef1acd907
- SHA1
  
  6d4909e4030cdde9417910dced6156654e77344c
- SHA256
  
  07c68acf75eeb035f42ae3630f4039d6ecac90d78ae4c8a009f2459ec8d153c1
- SHA512
  
  a777ee5db4ec923f71132dd2092fb7b207214ebf4c44850f343db37fcef6ae8a1bd2f5af785707e8cda7543e19ddad85473fa1ff92b1ab783fc304d914e3b346
- SSDEEP
  
  192:kV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2ObqWF8qa1Dojjgi:WqaCF31cix+Dc4zj3FF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan