Static task
static1
Behavioral task
behavioral1
Sample
306393ab257690d610aa142d02d998fe.dll
Resource
win7v20201028
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
306393ab257690d610aa142d02d998fe.dll
Resource
win10v20201028
windows10_x64
0 signatures
0 seconds
General
-
Target
306393ab257690d610aa142d02d998fe
-
Size
244KB
-
MD5
d752b2cb852d6a8f16b64cbcb1b3e2b3
-
SHA1
af9f2204d1354b77e19bc2b96612ba5276671a04
-
SHA256
17fd50b6a70ae468b1fe38e632885d40c2abc590da13487466ed7dc2e016852b
-
SHA512
517de35b8afe36c70ef2a227679f740f0adeae5fca813dd2a237453057e19cf740f9d2daa8e0e23998fa114b4ed02c732355125403aa1d41b26400867f338588
Score
10/10
Malware Config
Signatures
-
Cobalt Strike reflective loader 1 IoCs
Detects the reflective loader used by Cobalt Strike.
Processes:
resource yara_rule sample cobalt_reflective_dll -
Cobaltstrike family
Files
-
306393ab257690d610aa142d02d998fe.dll windows x86