General

  • Target

    09b6eb85c89ae4ac163f3427fd82ab5db9d5e70c8e2da2d2ce919d3fe9b43d71

  • Size

    4.5MB

  • Sample

    241109-f3blps1neq

  • MD5

    4f301ee9ff2d3f82c5b71743e611a333

  • SHA1

    e901cc6650a5118477ed279c3d62a13a5bf8d298

  • SHA256

    09b6eb85c89ae4ac163f3427fd82ab5db9d5e70c8e2da2d2ce919d3fe9b43d71

  • SHA512

    fb80f98b21e2319704ffa0bd8dab580b6459ff2bd0898ed1669c85f02a18fdcbcee67eca486402034d16d0648a5b82c1b8b86e518a9b73172bd83a43577377f0

  • SSDEEP

    49152:sleplZYfzBPd0F+6ysX2ZtO73x2GoTPfBGlWynWrmwTximEm9BkcTUHZyAS1+COi:BplZys

Malware Config

Extracted

Family

cobaltstrike

C2

http://192.168.77.128:800/EZuI

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; MATM)

Targets

    • Target

      09b6eb85c89ae4ac163f3427fd82ab5db9d5e70c8e2da2d2ce919d3fe9b43d71

    • Size

      4.5MB

    • MD5

      4f301ee9ff2d3f82c5b71743e611a333

    • SHA1

      e901cc6650a5118477ed279c3d62a13a5bf8d298

    • SHA256

      09b6eb85c89ae4ac163f3427fd82ab5db9d5e70c8e2da2d2ce919d3fe9b43d71

    • SHA512

      fb80f98b21e2319704ffa0bd8dab580b6459ff2bd0898ed1669c85f02a18fdcbcee67eca486402034d16d0648a5b82c1b8b86e518a9b73172bd83a43577377f0

    • SSDEEP

      49152:sleplZYfzBPd0F+6ysX2ZtO73x2GoTPfBGlWynWrmwTximEm9BkcTUHZyAS1+COi:BplZys

MITRE ATT&CK Enterprise v15

Tasks