cobaltstrike | 7bad3fb6774e3a5da4dab37f1990a23c5ddc09679b9411e7032a4e922eb704f2

Analysis

max time kernel
132s
max time network
148s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
26-09-2024 09:51

Target

7bad3fb6774e3a5da4dab37f1990a23c5ddc09679b9411e7032a4e922eb704f2.exe
Size

1.3MB
MD5

9de4440ac8fd4d3b75e779211d4f1fe0
SHA1

eed47647eb2dadbada204709a2e42bb24bf4a048
SHA256

7bad3fb6774e3a5da4dab37f1990a23c5ddc09679b9411e7032a4e922eb704f2
SHA512

0636dde49ea83b2a5deb5b23619e37139bb46f537917f0ef8eb775bf47a40aca9f40787479fb6786fc42dc53aaa163acc619722f003163ad33c3a1d07aa4e56f
SSDEEP

24576:ZUdEL/v3QqFFUMM/Y+DJMUOqaPRNuV36KSzo4:ZgoXQqFC/dJsz/

Score

10^/10

Family

cobaltstrike

http://8.219.148.239:80/jquery-3.3.2.slim.min.js

Attributes

user_agent
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.5 Referer: http://code.jquery.com/ Accept-Encoding: gzip, deflate User-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko

Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
trojan backdoor cobaltstrike

C:\Users\Admin\AppData\Local\Temp\7bad3fb6774e3a5da4dab37f1990a23c5ddc09679b9411e7032a4e922eb704f2.exe
"C:\Users\Admin\AppData\Local\Temp\7bad3fb6774e3a5da4dab37f1990a23c5ddc09679b9411e7032a4e922eb704f2.exe"
1⤵
PID:1072

memory/1072-0-0x0000023EF4AD0000-0x0000023EF4AD1000-memory.dmp

Filesize
4KB

Download