General

  • Target

    2025-04-25_1452d6a3ec8d69b0b331bc751e9c117b_cobalt-strike_elex_hellokitty

  • Size

    231KB

  • Sample

    250425-dp5araytcs

  • MD5

    1452d6a3ec8d69b0b331bc751e9c117b

  • SHA1

    9bf39e1ff35659600fc2220e322f0319f5d8add0

  • SHA256

    eed8806090ae11e888fceb18bb633068a6cab9aeac590c10fb2d4b74e0251d84

  • SHA512

    85f5506368d74a64e852e45380c15c3bc95b6cbefa5b86f3225919d8f87aea2f40e4883a25c8d52190b9d715ae2bec7d247c4fc72f2349293376be455dd4c145

  • SSDEEP

    3072:BNwCrquaP24/h7Q22oWvjWn+V4t4jrv34CovCWcKqp0re5OkOYg7SCv:/UhAoAZoLiVCv

Malware Config

Extracted

Family

koiloader

C2

http://79.124.78.173/incongruousness.php

Attributes
  • payload_url

    https://www.wilkinsonbeane.com/css/slider

Targets

    • Target

      2025-04-25_1452d6a3ec8d69b0b331bc751e9c117b_cobalt-strike_elex_hellokitty

    • Size

      231KB

    • MD5

      1452d6a3ec8d69b0b331bc751e9c117b

    • SHA1

      9bf39e1ff35659600fc2220e322f0319f5d8add0

    • SHA256

      eed8806090ae11e888fceb18bb633068a6cab9aeac590c10fb2d4b74e0251d84

    • SHA512

      85f5506368d74a64e852e45380c15c3bc95b6cbefa5b86f3225919d8f87aea2f40e4883a25c8d52190b9d715ae2bec7d247c4fc72f2349293376be455dd4c145

    • SSDEEP

      3072:BNwCrquaP24/h7Q22oWvjWn+V4t4jrv34CovCWcKqp0re5OkOYg7SCv:/UhAoAZoLiVCv

MITRE ATT&CK Enterprise v16

Tasks