_ReflectiveLoader@4
Static task
static1
Behavioral task
behavioral1
Sample
4649221068ea794a26b14eb024f108690976c78b6c79ca3cab32aec5c006202c.dll
Resource
win7v20201028
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
4649221068ea794a26b14eb024f108690976c78b6c79ca3cab32aec5c006202c.dll
Resource
win10v20201028
0 signatures
0 seconds
General
-
Target
4649221068ea794a26b14eb024f108690976c78b6c79ca3cab32aec5c006202c
-
Size
207KB
-
MD5
ee03b27a68df31d5ce5d48b12fa5e8ab
-
SHA1
91d9fb71fd3e0864be41b44dc91f35e9edc2d9fe
-
SHA256
4649221068ea794a26b14eb024f108690976c78b6c79ca3cab32aec5c006202c
-
SHA512
a393f329a92b464cf81280525e781f543ec9730bbe9980782e97b26fc474157022205dd59e9b20aa38934e762312b11c72b9c200cffbba9d2c0438fa36d0a0fd
Score
10/10
Malware Config
Signatures
-
Cobalt Strike reflective loader 1 IoCs
Detects the reflective loader used by Cobalt Strike.
Processes:
resource yara_rule sample cobalt_reflective_dll -
Cobaltstrike family
Files
-
4649221068ea794a26b14eb024f108690976c78b6c79ca3cab32aec5c006202c.dll windows x86
Exports
Exports