Static task
static1
Behavioral task
behavioral1
Sample
366ef4b52211b2ff66cf2a1376fd9608bcc67eba56fd8dd37555cd4b51361201.dll
Resource
win7v20201028
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
366ef4b52211b2ff66cf2a1376fd9608bcc67eba56fd8dd37555cd4b51361201.dll
Resource
win10v20201028
windows10_x64
0 signatures
0 seconds
Errors
Reason
config extraction: CobaltStrike: pe: invalid address
General
-
Target
366ef4b52211b2ff66cf2a1376fd9608bcc67eba56fd8dd37555cd4b51361201
-
Size
244KB
-
MD5
e440076ca6538749c5287e7f4a753319
-
SHA1
8413854b965d30757b8c3425c125a75fb5489060
-
SHA256
366ef4b52211b2ff66cf2a1376fd9608bcc67eba56fd8dd37555cd4b51361201
-
SHA512
950553cf385a60a26aa587cc0b30d0bb4793fabfa5303d7ef00444460d0df48a87919370f74e96037e064728f957e6f417b5f4ab43dfb38f7db8d4b7133390fe
Score
10/10
Malware Config
Signatures
-
Cobalt Strike reflective loader 1 IoCs
Detects the reflective loader used by Cobalt Strike.
Processes:
resource yara_rule sample cobalt_reflective_dll -
Cobaltstrike family
Files
-
366ef4b52211b2ff66cf2a1376fd9608bcc67eba56fd8dd37555cd4b51361201.dll windows x86