cobaltstrike | 12ce354fb01d16524126287cc0b12f14aa3077c6273dc3f479de26b104626658 | Triage

Sharing

General

Target

12ce354fb01d16524126287cc0b12f14aa3077c6273dc3f479de26b104626658
Size

19KB
Sample

240927-r4j51szdnf
MD5

85b5bf3202121bcc048ae8b5b04595bd
SHA1

b61d0fc5797fbd6734681ae552275f5afddca813
SHA256

12ce354fb01d16524126287cc0b12f14aa3077c6273dc3f479de26b104626658
SHA512

abbf6976cdae01c3d08ac8c89ada516fec2d339ab7d7dc2792ab4978eaadc52522885faa3ec1a05104b558263077702149b22da8cf968184bc7374ea25136956
SSDEEP

192:zV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2/WuvkWF8qa1Dojjgi:dqaCF31cix+Dc4zjaWuvRFF46gi

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://89.197.154.115:7700/E5nu

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; WOW64; Trident/6.0; ASU2JS)

Targets

- Target
  
  12ce354fb01d16524126287cc0b12f14aa3077c6273dc3f479de26b104626658
- Size
  
  19KB
- MD5
  
  85b5bf3202121bcc048ae8b5b04595bd
- SHA1
  
  b61d0fc5797fbd6734681ae552275f5afddca813
- SHA256
  
  12ce354fb01d16524126287cc0b12f14aa3077c6273dc3f479de26b104626658
- SHA512
  
  abbf6976cdae01c3d08ac8c89ada516fec2d339ab7d7dc2792ab4978eaadc52522885faa3ec1a05104b558263077702149b22da8cf968184bc7374ea25136956
- SSDEEP
  
  192:zV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2/WuvkWF8qa1Dojjgi:dqaCF31cix+Dc4zjaWuvRFF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan