cobaltstrike | 273ba908b18101dc030ee3e6efbe2111ccbfaf76e029f5abe4b7748fa4a8274c | Triage

Sharing

General

Target

273ba908b18101dc030ee3e6efbe2111ccbfaf76e029f5abe4b7748fa4a8274c
Size

57KB
Sample

241031-j8k9wawlfk
MD5

ab0662588da7d3bbbaf43874ea006402
SHA1

fd69c29b50fac7ba5798d7cfee3715f71a0f144a
SHA256

273ba908b18101dc030ee3e6efbe2111ccbfaf76e029f5abe4b7748fa4a8274c
SHA512

08a264129bf85cac44d48863cb8bbafb94bbcff2c9bf858527a2ea971c5dfd49bc28fe1673c08e607f48d121eff6e7ad7566701cb17175a49fc7edc172c5c570
SSDEEP

1536:TpyK/fPL+fq1ZqQtIZhaG9qCL/EgvBNDtb+:Tb/fPH1ZqQtIZhaqfZ51B+

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://39.107.242.125:666/fAIm

Attributes

user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)

Targets

- Target
  
  273ba908b18101dc030ee3e6efbe2111ccbfaf76e029f5abe4b7748fa4a8274c
- Size
  
  57KB
- MD5
  
  ab0662588da7d3bbbaf43874ea006402
- SHA1
  
  fd69c29b50fac7ba5798d7cfee3715f71a0f144a
- SHA256
  
  273ba908b18101dc030ee3e6efbe2111ccbfaf76e029f5abe4b7748fa4a8274c
- SHA512
  
  08a264129bf85cac44d48863cb8bbafb94bbcff2c9bf858527a2ea971c5dfd49bc28fe1673c08e607f48d121eff6e7ad7566701cb17175a49fc7edc172c5c570
- SSDEEP
  
  1536:TpyK/fPL+fq1ZqQtIZhaG9qCL/EgvBNDtb+:Tb/fPH1ZqQtIZhaqfZ51B+
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
- Cobaltstrike family
  cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan