cobaltstrike | 722359ebd46ace2d25802959791ae3f6af433451d81b915cdb72890cbba357ef

Analysis

max time kernel
134s
max time network
139s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
27-09-2024 15:29

Target

722359ebd46ace2d25802959791ae3f6af433451d81b915cdb72890cbba357ef.exe
Size

19KB
MD5

370dcc1d0729d93d08255de011febaa4
SHA1

12462b20ff78fa8bc714c02fe6b4427d7b82842d
SHA256

722359ebd46ace2d25802959791ae3f6af433451d81b915cdb72890cbba357ef
SHA512

3e43839663825a4c4ee1ca8f81beda5b142539dc559e89df41bc24cedeaa9e58d85d326b47e24bf0a3cf08f9f64683c527e7867901ae979ef81efc9112df133c
SSDEEP

192:yV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/28pZkEtNx/WF8qa1Dojjgi:8qaCF31cix+Dc4zjPwFFF46gi

Score

10^/10

Family

cobaltstrike

http://89.197.154.115:7700/mdS9

Attributes

user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.1)

Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
trojan backdoor cobaltstrike

C:\Users\Admin\AppData\Local\Temp\722359ebd46ace2d25802959791ae3f6af433451d81b915cdb72890cbba357ef.exe
"C:\Users\Admin\AppData\Local\Temp\722359ebd46ace2d25802959791ae3f6af433451d81b915cdb72890cbba357ef.exe"
1⤵
PID:3368

memory/3368-0-0x0000000000020000-0x0000000000021000-memory.dmp

Filesize
4KB

Download
memory/3368-1-0x0000000000400000-0x000000000040C000-memory.dmp

Filesize
48KB

Download