General

  • Target

    98c5baefa9da5eddc7621d0328a3558a3a0db88007d49cd6ed63cd05599889a6

  • Size

    407KB

  • Sample

    241107-dp8yyawqan

  • MD5

    e81916aeca67008e8ce8e52c89e3ff85

  • SHA1

    aa735867ef6bcd66e6baca2f445a28948e68f197

  • SHA256

    98c5baefa9da5eddc7621d0328a3558a3a0db88007d49cd6ed63cd05599889a6

  • SHA512

    2bc024704ac5c7f97decb572f6599e5cde69bd911b20ad85b41d3e8b75a822105d5f9332b7c511deb865bd890be5c7e4480b9ce3d390eccbb6138317e7707f73

  • SSDEEP

    6144:SiKneODu3wuAiXhL6gUSrpwcjIeS5wBdMwph9b+s194Q:SiKneODu3wuAiXhL6AuwBdMon+s1

Malware Config

Extracted

Family

cobaltstrike

C2

http://192.168.150.128:8080/signin

Attributes
  • user_agent

    Connection: close Sec-Fetch-Site: same-origin Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Detch-Dest: document User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 12_1_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Mobile/16C104

Targets

    • Target

      98c5baefa9da5eddc7621d0328a3558a3a0db88007d49cd6ed63cd05599889a6

    • Size

      407KB

    • MD5

      e81916aeca67008e8ce8e52c89e3ff85

    • SHA1

      aa735867ef6bcd66e6baca2f445a28948e68f197

    • SHA256

      98c5baefa9da5eddc7621d0328a3558a3a0db88007d49cd6ed63cd05599889a6

    • SHA512

      2bc024704ac5c7f97decb572f6599e5cde69bd911b20ad85b41d3e8b75a822105d5f9332b7c511deb865bd890be5c7e4480b9ce3d390eccbb6138317e7707f73

    • SSDEEP

      6144:SiKneODu3wuAiXhL6gUSrpwcjIeS5wBdMwph9b+s194Q:SiKneODu3wuAiXhL6AuwBdMon+s1

MITRE ATT&CK Matrix

Tasks