Overview

overview

10

Static

static

10

2024-10-17...at.exe

windows7-x64

10

2024-10-17...at.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    148s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    17/10/2024, 12:46

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-10-17_4c3dfb3f693058df7a7f7fed36c1e692_cobalt-strike_cobaltstrike_poet-rat.exe

  • Size

    5.9MB

  • MD5

    4c3dfb3f693058df7a7f7fed36c1e692

  • SHA1

    090f79447e2c830fd351dcd3f73901710e2dc1fb

  • SHA256

    c35d87e75edfa3e615758ba2e58591e9aeed5919b9e2dc53030498846597acf8

  • SHA512

    d107205951bf887cb2a49b6f983ce5b628d1612c1d4eb8c204228ad8cf6d78f636d7d1afe279918fda69cd50202f89b69abb3de2718d0a6a13d40e65c72107ba

  • SSDEEP

    98304:demTLkNdfE0pZ3u56utgpPFotBER/mQ32lUq:E+b56utgpPF8u/7q

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-10-17_4c3dfb3f693058df7a7f7fed36c1e692_cobalt-strike_cobaltstrike_poet-rat.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-10-17_4c3dfb3f693058df7a7f7fed36c1e692_cobalt-strike_cobaltstrike_poet-rat.exe"
    1⤵
      PID:4328

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • memory/4328-0-0x00007FF7584E0000-0x00007FF758834000-memory.dmp

            Filesize

            3.3MB

            Download