Overview

overview

10

Static

static

10

download.ps1

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    download.ps1

  • Size

    3KB

  • Sample

    241127-yy349svldl

  • MD5

    221e40f56f2197f22083de20c9187885

  • SHA1

    93aeabfec67880114483c3f902a338514d1ba5e1

  • SHA256

    4a3ae58cccbd3f89839e68231454d8938c92e0142e909acc77f924d935b79fc9

  • SHA512

    6f50f2ed58d55fbd34c036d5189677a6a5ef580a1e856497256623b5fffa1aa3eb32bb07d01dd235c9655d37c6b192f7acd0e3fc6d824ff2c73d1d33fa0ad9bf

Score
10/10
cobaltstrikeexecution

Malware Config

Extracted

Family

cobaltstrike

C2

http://172.16.1.109:8443/yPb2

Attributes
  • user_agent

    User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.2)

Targets

    • Target

      download.ps1

    • Size

      3KB

    • MD5

      221e40f56f2197f22083de20c9187885

    • SHA1

      93aeabfec67880114483c3f902a338514d1ba5e1

    • SHA256

      4a3ae58cccbd3f89839e68231454d8938c92e0142e909acc77f924d935b79fc9

    • SHA512

      6f50f2ed58d55fbd34c036d5189677a6a5ef580a1e856497256623b5fffa1aa3eb32bb07d01dd235c9655d37c6b192f7acd0e3fc6d824ff2c73d1d33fa0ad9bf

    Score
    3/10
    execution
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks