cobaltstrike | 9814b1ef176f06edc9eea7f27444dc73a75056eb018b07b22bedc71136b742ec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9814b1ef176f06edc9eea7f27444dc73a75056eb018b07b22bedc71136b742ec
Size

311KB
MD5

fb9463d18574023ba6e322f27ab99965
SHA1

cdd5ebabfd0f64fad6308b6e6bf4fe8274a640ef
SHA256

9814b1ef176f06edc9eea7f27444dc73a75056eb018b07b22bedc71136b742ec
SHA512

b7569539715dfefbaa5753645c6d13bbc345be64f3f47e46ea5b1cb175f94792772fb4874c1156971a5aa25c865d18f38099a79b60e300b706f50e6ca0e60cd7
SSDEEP

6144:nS/3wVyBWl40pPmMHLdL1hALe+2NirdrQdZkwUKD08PY:nm3myS4wmMdoLT2NKcSwE

Score

10^/10

cobaltstrike

Malware Config

Signatures

Cobaltstrike family
cobaltstrike

Files

9814b1ef176f06edc9eea7f27444dc73a75056eb018b07b22bedc71136b742ec
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 258KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE