cobaltstrike | cobaltstrike_shellcode_child2[.]bin | Triage

Sharing

Reason

config extraction: CobaltStrike: cobaltstrike: $reflective_dll not found

General

Target

cobaltstrike_shellcode_child2.bin
Size

201KB
MD5

b5c9b319bc54cbde2af2bcb3b3ee744a
SHA1

25d18f1af52c3c55b71ad20f3d87dd9a3faacabc
SHA256

b6e092b5f8f73908841a430e8e45e5928d69e7a4288e6bec9a12706dddf39194
SHA512

b5ecccc0736937a202444500a0ea39c9377a7e772d8be7872fa2b96c8b145fca9c717c15f48cb51944e9bce662d43d15844672c1e51dfebf1a4db349f7837c68

Score

10^/10

cobaltstrike

Malware Config

Signatures

Cobalt Strike reflective loader 1 IoCs

Detects the reflective loader used by Cobalt Strike.

Processes:

resource	yara_rule
sample	cobalt_reflective_dll

Cobaltstrike family
cobaltstrike

Files

cobaltstrike_shellcode_child2.bin
.dll windows x86

Exports

Exports

_ReflectiveLoader@4