Overview

overview

10

Static

static

10

dcf75ab269...fd.exe

windows7-x64

1

dcf75ab269...fd.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dcf75ab2691380ac029ff6523a60538aba469862470bfc8fff949e089f99e5fd

  • Size

    1.5MB

  • Sample

    241124-m2e13awnfs

  • MD5

    54dab7b93c173a8b1c6ed7f6091fb677

  • SHA1

    78a3d165bfe4d03fe63758f403cc8ec5092ec763

  • SHA256

    dcf75ab2691380ac029ff6523a60538aba469862470bfc8fff949e089f99e5fd

  • SHA512

    74205a2a190fc77f1ba70e6792523beaf1d155ec02a5933c37fdffe1cb27fb54ed8f34bfe6e264d87703e6602edbf43e7a52e262f34319972f090f8b26008422

  • SSDEEP

    24576:PaBXQHmsFNmN2hdSKQ4nS42Ue7wsokcgqc:PWQHDTmNtLwsL

Score
10/10
cobaltstrike

Malware Config

Extracted

Family

cobaltstrike

C2

http://192.168.241.130:9999/jquery-3.3.2.slim.min.js

Attributes
  • user_agent

    Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.5 Referer: http://code.jquery.com/ Accept-Encoding: gzip, deflate User-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko

Targets

    • Target

      dcf75ab2691380ac029ff6523a60538aba469862470bfc8fff949e089f99e5fd

    • Size

      1.5MB

    • MD5

      54dab7b93c173a8b1c6ed7f6091fb677

    • SHA1

      78a3d165bfe4d03fe63758f403cc8ec5092ec763

    • SHA256

      dcf75ab2691380ac029ff6523a60538aba469862470bfc8fff949e089f99e5fd

    • SHA512

      74205a2a190fc77f1ba70e6792523beaf1d155ec02a5933c37fdffe1cb27fb54ed8f34bfe6e264d87703e6602edbf43e7a52e262f34319972f090f8b26008422

    • SSDEEP

      24576:PaBXQHmsFNmN2hdSKQ4nS42Ue7wsokcgqc:PWQHDTmNtLwsL

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks