General
-
Target
09b6eb85c89ae4ac163f3427fd82ab5db9d5e70c8e2da2d2ce919d3fe9b43d71
-
Size
4.5MB
-
Sample
241109-f3blps1neq
-
MD5
4f301ee9ff2d3f82c5b71743e611a333
-
SHA1
e901cc6650a5118477ed279c3d62a13a5bf8d298
-
SHA256
09b6eb85c89ae4ac163f3427fd82ab5db9d5e70c8e2da2d2ce919d3fe9b43d71
-
SHA512
fb80f98b21e2319704ffa0bd8dab580b6459ff2bd0898ed1669c85f02a18fdcbcee67eca486402034d16d0648a5b82c1b8b86e518a9b73172bd83a43577377f0
-
SSDEEP
49152:sleplZYfzBPd0F+6ysX2ZtO73x2GoTPfBGlWynWrmwTximEm9BkcTUHZyAS1+COi:BplZys
Static task
static1
Behavioral task
behavioral1
Sample
09b6eb85c89ae4ac163f3427fd82ab5db9d5e70c8e2da2d2ce919d3fe9b43d71.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
09b6eb85c89ae4ac163f3427fd82ab5db9d5e70c8e2da2d2ce919d3fe9b43d71.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
cobaltstrike
http://192.168.77.128:800/EZuI
-
user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; MATM)
Targets
-
-
Target
09b6eb85c89ae4ac163f3427fd82ab5db9d5e70c8e2da2d2ce919d3fe9b43d71
-
Size
4.5MB
-
MD5
4f301ee9ff2d3f82c5b71743e611a333
-
SHA1
e901cc6650a5118477ed279c3d62a13a5bf8d298
-
SHA256
09b6eb85c89ae4ac163f3427fd82ab5db9d5e70c8e2da2d2ce919d3fe9b43d71
-
SHA512
fb80f98b21e2319704ffa0bd8dab580b6459ff2bd0898ed1669c85f02a18fdcbcee67eca486402034d16d0648a5b82c1b8b86e518a9b73172bd83a43577377f0
-
SSDEEP
49152:sleplZYfzBPd0F+6ysX2ZtO73x2GoTPfBGlWynWrmwTximEm9BkcTUHZyAS1+COi:BplZys
Score10/10-
Cobaltstrike family
-
Executes dropped EXE
-