cobaltstrike | c717d8b26de612e15015cd55940215be336963b6062196f9d847912b98582627

Resubmissions

31-12-2024 04:55

29-12-2024 15:03

max time kernel
148s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
29-12-2024 15:03

Target

c717d8b26de612e15015cd55940215be336963b6062196f9d847912b98582627.exe
Size

1.9MB
MD5

f52998afebd1a705192c3d6c938502c5
SHA1

bd92e60c940df31d009f6c52e371023c3226f08f
SHA256

c717d8b26de612e15015cd55940215be336963b6062196f9d847912b98582627
SHA512

72b0e58552cc74054d94a30ce6e9cdb027646399b3e333e69e1033acede7231d92416defa29baa2f8aa1807f288ca39eade84aad12b31d76850baeae91f83c8e
SSDEEP

24576:jpHvc+NBApZHPOsmDfyNIwoBWG0JnrH4j2FcIxXnYzbPTPnNFsu:jpk+3ALGwoUxrYjulnYLPnjH

Score

10^/10

Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
trojan backdoor cobaltstrike
Cobaltstrike family
cobaltstrike

C:\Users\Admin\AppData\Local\Temp\c717d8b26de612e15015cd55940215be336963b6062196f9d847912b98582627.exe
"C:\Users\Admin\AppData\Local\Temp\c717d8b26de612e15015cd55940215be336963b6062196f9d847912b98582627.exe"
1⤵
PID:2876

memory/2876-0-0x0000020E4D410000-0x0000020E4D420000-memory.dmp

Filesize
64KB

Download
memory/2876-1-0x0000020E4EF60000-0x0000020E4F360000-memory.dmp

Filesize
4.0MB

Download
memory/2876-2-0x0000020E4D410000-0x0000020E4D420000-memory.dmp

Filesize
64KB

Download