top title background image
flash

qr.png.exe

Status: finished
Submission Time: 2023-07-21 09:59:15 +02:00
Malicious
Trojan
Evader
CobaltStrike

Comments

Tags

  • CobaltStrike
  • CobaltStrike
  • exe
  • signed

Details

  • Analysis ID:
    1277281
  • API (Web) ID:
    1277281
  • Analysis Started:
    2023-07-21 09:59:16 +02:00
  • Analysis Finished:
    2023-07-21 10:08:15 +02:00
  • MD5:
    c2ef24ba11461cbffb1a6a81c36309bf
  • SHA1:
    fcb01e98c545261616b6f14bb91d5beb2ba25ca4
  • SHA256:
    c0545200569496754aa5a4c3000af185b56b819409a561f7a5cc5c6bb3015f8b
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
malicious
Score: 100
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 134, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

malicious
Score: 22/71
malicious
Score: 13/38
malicious
malicious

IPs

IP Country Detection
51.222.196.75
France

Domains

Name IP Detection
license.itekgroup.com
51.222.196.75

URLs

Name Detection
license.itekgroup.com
https://license.itekgroup.com:8080/poll?token=Z29nZmVqZWRnbGdoZGJoZ2dvZ2xmZ2hqaGVlbWRnaGZna2dnZ2NkYW
https://license.itekgroup.com:8080/
Click to see the 3 hidden entries
https://license.itekgroup.com:8080/0
https://license.itekgroup.com/
https://license.itekgroup.com/Ip

Dropped files

No malicious files found. See full and IOC report for all dropped files.