General
-
Target
29b191d7434968cfa9bf106e41d3eed7a1dd971f39c354a6a066fd14968fd3c6
-
Size
413KB
-
Sample
241110-r2w2ssygnb
-
MD5
c40039345b240aa8185686b65e647acd
-
SHA1
39384a897e29ecb1877e0bae906a875f1a042c01
-
SHA256
29b191d7434968cfa9bf106e41d3eed7a1dd971f39c354a6a066fd14968fd3c6
-
SHA512
56937886e82c584a8e8be51fd1252775f175a36d92a8ad6dae26288c4bd2b18f1118781692bf4415a9a112ccc4d5d2fea4433188dbeeeba794c12c137ff47c85
-
SSDEEP
6144:YCO6P+TplgOkABiXhoyj4NrdwcjUJTXiReclZwAG/XEjKfbH4Q:YCO6P+TYOkABiXhoy7DiRecS/Vfb
Static task
static1
Behavioral task
behavioral1
Sample
29b191d7434968cfa9bf106e41d3eed7a1dd971f39c354a6a066fd14968fd3c6.exe
Resource
win7-20241023-en
Behavioral task
behavioral2
Sample
29b191d7434968cfa9bf106e41d3eed7a1dd971f39c354a6a066fd14968fd3c6.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
cobaltstrike
http://192.168.150.128:8080/signin
-
user_agent
Connection: close Sec-Fetch-Site: same-origin Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Detch-Dest: document User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 12_1_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Mobile/16C104
Targets
-
-
Target
29b191d7434968cfa9bf106e41d3eed7a1dd971f39c354a6a066fd14968fd3c6
-
Size
413KB
-
MD5
c40039345b240aa8185686b65e647acd
-
SHA1
39384a897e29ecb1877e0bae906a875f1a042c01
-
SHA256
29b191d7434968cfa9bf106e41d3eed7a1dd971f39c354a6a066fd14968fd3c6
-
SHA512
56937886e82c584a8e8be51fd1252775f175a36d92a8ad6dae26288c4bd2b18f1118781692bf4415a9a112ccc4d5d2fea4433188dbeeeba794c12c137ff47c85
-
SSDEEP
6144:YCO6P+TplgOkABiXhoyj4NrdwcjUJTXiReclZwAG/XEjKfbH4Q:YCO6P+TYOkABiXhoy7DiRecS/Vfb
Score10/10-
Cobaltstrike family
-