Overview

overview

10

Static

static

3

04648cf243...5d.exe

windows7-x64

10

04648cf243...5d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    04648cf243c9b6ca12ddcbf7ef2c5da0ff885cd8ab8b72a06c8c4a9f8c9ffd5d

  • Size

    240KB

  • Sample

    250321-lv39mswvct

  • MD5

    e780fd3aa69bf08ef1d37074c0b542db

  • SHA1

    ea80a73dfdc16c8ad31d6328c73b4c72d86140df

  • SHA256

    04648cf243c9b6ca12ddcbf7ef2c5da0ff885cd8ab8b72a06c8c4a9f8c9ffd5d

  • SHA512

    1ea8e0b5a7a0007fc78bcbeb8a7ffb3e7171a0c09356b37221f626e41b90c976cc58835c26a4d2ea267b268c0077f3d1ab8c4d176cc288c7b0f01d7867d2f62d

  • SSDEEP

    3072:OsxZF0BeaUGK2seRzbnFQFxE7ec6vENGDNALLVv13YryYpEm2MWZJ6wws9vs+0f2:LetngSehMNGD+LLVhYtpWWO

Score
10/10
cobaltstrikebackdoortrojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://10.0.1.4:8090/HZkP

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; BOIE9;ENUSMSE)

Targets

    • Target

      04648cf243c9b6ca12ddcbf7ef2c5da0ff885cd8ab8b72a06c8c4a9f8c9ffd5d

    • Size

      240KB

    • MD5

      e780fd3aa69bf08ef1d37074c0b542db

    • SHA1

      ea80a73dfdc16c8ad31d6328c73b4c72d86140df

    • SHA256

      04648cf243c9b6ca12ddcbf7ef2c5da0ff885cd8ab8b72a06c8c4a9f8c9ffd5d

    • SHA512

      1ea8e0b5a7a0007fc78bcbeb8a7ffb3e7171a0c09356b37221f626e41b90c976cc58835c26a4d2ea267b268c0077f3d1ab8c4d176cc288c7b0f01d7867d2f62d

    • SSDEEP

      3072:OsxZF0BeaUGK2seRzbnFQFxE7ec6vENGDNALLVv13YryYpEm2MWZJ6wws9vs+0f2:LetngSehMNGD+LLVhYtpWWO

    Score
    10/10
    cobaltstrikebackdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.