cobaltstrike | af93e6a7a99b761108680305334121a1ad1833a998333c7fa239399125e5a8d6 | Triage

Sharing

General

Target

af93e6a7a99b761108680305334121a1ad1833a998333c7fa239399125e5a8d6
Size

19KB
Sample

240926-24cfaasfrp
MD5

4ec950715112797ea3d81f2eae73283b
SHA1

ea046aa9196f2d5318435cbce75a2b479a1e69b2
SHA256

af93e6a7a99b761108680305334121a1ad1833a998333c7fa239399125e5a8d6
SHA512

b8b764e23ad65f8764c716bdd612c4157308c171e1addf6bbfd9b5b48157af2779acaa1e44bfc11c6b79a4424242eda5df7f60bd72e1a374ce3b0958651f5132
SSDEEP

192:aV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2UyzpMYWF8qa1Dojjgi:0qaCF31cix+Dc4zjipMtFF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://112.126.77.173:4455/QkGZ

Attributes

user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; LBBROWSER)

Targets

- Target
  
  af93e6a7a99b761108680305334121a1ad1833a998333c7fa239399125e5a8d6
- Size
  
  19KB
- MD5
  
  4ec950715112797ea3d81f2eae73283b
- SHA1
  
  ea046aa9196f2d5318435cbce75a2b479a1e69b2
- SHA256
  
  af93e6a7a99b761108680305334121a1ad1833a998333c7fa239399125e5a8d6
- SHA512
  
  b8b764e23ad65f8764c716bdd612c4157308c171e1addf6bbfd9b5b48157af2779acaa1e44bfc11c6b79a4424242eda5df7f60bd72e1a374ce3b0958651f5132
- SSDEEP
  
  192:aV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2UyzpMYWF8qa1Dojjgi:0qaCF31cix+Dc4zjipMtFF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan