Analysis

  • max time kernel
    103s
  • max time network
    143s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250502-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250502-enlocale:en-usos:windows10-2004-x64system
  • submitted
    15/05/2025, 00:51

General

  • Target

    2025-05-15_375368df37bc83f698840b10ef4f96b2_black-basta_cobalt-strike_hijackloader_satacom.exe

  • Size

    731KB

  • MD5

    375368df37bc83f698840b10ef4f96b2

  • SHA1

    0cf78aaf878c3c29c0efa8ffd8b048e6483b4bda

  • SHA256

    0fe17cc17df44b92526dd7cadb529b9cce3c63799a53840a3037a63ec1f3c4c5

  • SHA512

    de478004f46470c2ef2ccba04227e9250af1a104ba051199182b4903a41dde6922ac31972a76615153d5f8ae73f5891a1b93795657f40e9d0c9822d326154da1

  • SSDEEP

    6144:Fp19SmYRZbsuSBs3ojpe6aABlwZFsr5pOGJr3eRqk3tJc+xZRtiKzvzaOKIeM876:Fp1EPZbsu2s3ojpe6aeSg3DeRqkUWt

Score
1/10

Malware Config

Signatures

  • Modifies system certificate store 2 TTPs 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2025-05-15_375368df37bc83f698840b10ef4f96b2_black-basta_cobalt-strike_hijackloader_satacom.exe
    "C:\Users\Admin\AppData\Local\Temp\2025-05-15_375368df37bc83f698840b10ef4f96b2_black-basta_cobalt-strike_hijackloader_satacom.exe"
    1⤵
    • Modifies system certificate store
    PID:212

Network

        MITRE ATT&CK Enterprise v16

        Replay Monitor

        Loading Replay Monitor...

        Downloads