- Backdoored Advanced_IP_Scanner_2.5.4594.1.exe
- 723227f3a71001fb9c0cd28ff52b2636 (MD5)
- fef06c28ae5a65672c31076b062e33cfaeb2b90309444f6567877f22997bc711 (SHA256)
- Malicious pcre.dll (DLL Sideloaded by main program executable)
- 21cdd0a64e8ac9ed58de9b88986c8983 (MD5)
- 9a0c600669772bc530fe07c2dbb23dbb4808c640d016ffb832460ed25d2bb49e (SHA256)
Extracted CobaltStrike Configuration
| Field | Value |Description |