General

  • Target

    29b191d7434968cfa9bf106e41d3eed7a1dd971f39c354a6a066fd14968fd3c6

  • Size

    413KB

  • Sample

    241110-r2w2ssygnb

  • MD5

    c40039345b240aa8185686b65e647acd

  • SHA1

    39384a897e29ecb1877e0bae906a875f1a042c01

  • SHA256

    29b191d7434968cfa9bf106e41d3eed7a1dd971f39c354a6a066fd14968fd3c6

  • SHA512

    56937886e82c584a8e8be51fd1252775f175a36d92a8ad6dae26288c4bd2b18f1118781692bf4415a9a112ccc4d5d2fea4433188dbeeeba794c12c137ff47c85

  • SSDEEP

    6144:YCO6P+TplgOkABiXhoyj4NrdwcjUJTXiReclZwAG/XEjKfbH4Q:YCO6P+TYOkABiXhoy7DiRecS/Vfb

Malware Config

Extracted

Family

cobaltstrike

C2

http://192.168.150.128:8080/signin

Attributes
  • user_agent

    Connection: close Sec-Fetch-Site: same-origin Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Detch-Dest: document User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 12_1_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Mobile/16C104

Targets

    • Target

      29b191d7434968cfa9bf106e41d3eed7a1dd971f39c354a6a066fd14968fd3c6

    • Size

      413KB

    • MD5

      c40039345b240aa8185686b65e647acd

    • SHA1

      39384a897e29ecb1877e0bae906a875f1a042c01

    • SHA256

      29b191d7434968cfa9bf106e41d3eed7a1dd971f39c354a6a066fd14968fd3c6

    • SHA512

      56937886e82c584a8e8be51fd1252775f175a36d92a8ad6dae26288c4bd2b18f1118781692bf4415a9a112ccc4d5d2fea4433188dbeeeba794c12c137ff47c85

    • SSDEEP

      6144:YCO6P+TplgOkABiXhoyj4NrdwcjUJTXiReclZwAG/XEjKfbH4Q:YCO6P+TYOkABiXhoy7DiRecS/Vfb

MITRE ATT&CK Matrix

Tasks