cobaltstrike | 2e8a2cf909684f33d15ea065724028f5f4c66130cdef5ba86673fdcd319bdce2 | Triage

Submit
Reports

Overview

overview

Static

static

3

2e8a2cf909...e2.exe

windows7-x64

2e8a2cf909...e2.exe

windows10-2004-x64

Sharing

General

Target

2e8a2cf909684f33d15ea065724028f5f4c66130cdef5ba86673fdcd319bdce2
Size

128KB
Sample

250218-ks2glayqfr
MD5

c5e66166280514108c4051c8ba8fd5bc
SHA1

6644e71ac0507a9787ef0dfa60211e404efe9872
SHA256

2e8a2cf909684f33d15ea065724028f5f4c66130cdef5ba86673fdcd319bdce2
SHA512

8b1c4bec1a3cdf03670a82180caf006f2fea0aa20278a6a6d16d81e1cfeb15c30badc43872a606755da58173357ccbf053f43e60dbb8cc9fbe1d4f2f404b07bb
SSDEEP

1536:CJZO6PqWAzaZ0ykJXOiK9yPUG1miqixtenUeQFTugx+28ObbbuXJxU5yhK24Ee2D:SwwR0y2R1miRxsSrdzuXJ04D

Score

10^/10

cobaltstrike backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2e8a2cf909684f33d15ea065724028f5f4c66130cdef5ba86673fdcd319bdce2.exe

Resource

win7-20241010-en

cobaltstrike backdoor trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2e8a2cf909684f33d15ea065724028f5f4c66130cdef5ba86673fdcd319bdce2.exe

Resource

win10v2004-20250217-en

cobaltstrike backdoor trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

cobaltstrike

C2

http://144.202.31.66:8880/bZ9h

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; LBBROWSER)

Targets

- Target
  
  2e8a2cf909684f33d15ea065724028f5f4c66130cdef5ba86673fdcd319bdce2
- Size
  
  128KB
- MD5
  
  c5e66166280514108c4051c8ba8fd5bc
- SHA1
  
  6644e71ac0507a9787ef0dfa60211e404efe9872
- SHA256
  
  2e8a2cf909684f33d15ea065724028f5f4c66130cdef5ba86673fdcd319bdce2
- SHA512
  
  8b1c4bec1a3cdf03670a82180caf006f2fea0aa20278a6a6d16d81e1cfeb15c30badc43872a606755da58173357ccbf053f43e60dbb8cc9fbe1d4f2f404b07bb
- SSDEEP
  
  1536:CJZO6PqWAzaZ0ykJXOiK9yPUG1miqixtenUeQFTugx+28ObbbuXJxU5yhK24Ee2D:SwwR0y2R1miRxsSrdzuXJ04D
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
- Cobaltstrike family
  cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan

© 2018-2025

Terms | Privacy