_ReflectiveLoader@4
Static task
static1
Behavioral task
behavioral1
Sample
8ea1556e8dc87bb4fc2422a2b3877bbf.dll
Resource
win7v20201028
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
8ea1556e8dc87bb4fc2422a2b3877bbf.dll
Resource
win10v20201028
0 signatures
0 seconds
General
-
Target
8ea1556e8dc87bb4fc2422a2b3877bbf
-
Size
204KB
-
MD5
f679cea11d6b8faa40a2b0b9ac7d7510
-
SHA1
96288ccf9600eb1f8d5021693d296d8e3e2a317a
-
SHA256
de5657a1ede1fbfdc70912bdd28a53ca71cf1a113ad7431c53b51a2ae6bd4dac
-
SHA512
244ea55c6ed26eac089c4320a30913ca714396bc07b558fead034eb869c1becf43d6f1718ca925d7bc0bc60636730364a76b4099479bf4f2cd1e1dd411f98b3c
Score
10/10
Malware Config
Signatures
-
Cobalt Strike reflective loader 1 IoCs
Detects the reflective loader used by Cobalt Strike.
Processes:
resource yara_rule sample cobalt_reflective_dll -
Cobaltstrike family
Files
-
8ea1556e8dc87bb4fc2422a2b3877bbf.dll windows x86
Exports
Exports