_ReflectiveLoader@4
Static task
static1
Behavioral task
behavioral1
Sample
2a02e328b1d3db8635ae6df84fdb5408e681aca3c9c4177dd5b1e91986b4340d.dll
Resource
win7v20201028
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
2a02e328b1d3db8635ae6df84fdb5408e681aca3c9c4177dd5b1e91986b4340d.dll
Resource
win10v20201028
windows10_x64
0 signatures
0 seconds
General
-
Target
2a02e328b1d3db8635ae6df84fdb5408e681aca3c9c4177dd5b1e91986b4340d
-
Size
269KB
-
MD5
c2d483b4de57b144f24ba84e48a579fd
-
SHA1
7b5ebe3bdeff2d2128ee2d84c06af509c3b1f9c1
-
SHA256
2a02e328b1d3db8635ae6df84fdb5408e681aca3c9c4177dd5b1e91986b4340d
-
SHA512
40c884f6b92fa5f73efb4f807f1a6885383762c65d6bbe218fc12ec1b3240dffe44e504946a25667b4c1cc72900e3cc4efe353d4a4b854aae94a51d6f106436a
Score
10/10
Malware Config
Signatures
-
Cobalt Strike reflective loader 1 IoCs
Detects the reflective loader used by Cobalt Strike.
Processes:
resource yara_rule sample cobalt_reflective_dll -
Cobaltstrike family
Files
-
2a02e328b1d3db8635ae6df84fdb5408e681aca3c9c4177dd5b1e91986b4340d.dll windows x86
Exports
Exports