Static task
static1
Behavioral task
behavioral1
Sample
562893fef79989aecf27f035d8df4a82.dll
Resource
win7v20201028
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
562893fef79989aecf27f035d8df4a82.dll
Resource
win10v20201028
0 signatures
0 seconds
General
-
Target
562893fef79989aecf27f035d8df4a82
-
Size
244KB
-
MD5
95edddc2ba7770314faac11a8e5fc9f0
-
SHA1
1fd0bf07054ce2ac05c34d0bd1b6098f0b2732d5
-
SHA256
b42f4e00fd5806d8d176713db7f7c05b35c522c4f589e7a0eeba23bf9afbb777
-
SHA512
3bec77e8861cdcf803dd5c80ab0fce33a206fdc190b901cd9e5bbe4f69df8a18c8fa59faf3bee58010417d1fc0a42ea8df3e61c439d71ba5e314943b4eefb94d
Score
10/10
Malware Config
Signatures
-
Cobalt Strike reflective loader 1 IoCs
Detects the reflective loader used by Cobalt Strike.
Processes:
resource yara_rule sample cobalt_reflective_dll -
Cobaltstrike family
Files
-
562893fef79989aecf27f035d8df4a82.dll windows x86