cobaltstrike | 29242eead7505142e0f3fd6f0f2d2b4a101bf362b9fd9104c05816ef82efe208 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

29242eead7505142e0f3fd6f0f2d2b4a101bf362b9fd9104c05816ef82efe208
Size

308KB
MD5

ecad6eefb83fce61938c4f9bb4631ecf
SHA1

aeca0d290cc59b1b3b9dd6f4ea003dbd34d1b053
SHA256

29242eead7505142e0f3fd6f0f2d2b4a101bf362b9fd9104c05816ef82efe208
SHA512

a78abd8e48462ab86283da01a30f56aba7677041f3e7f111cc638d8624c94dad3ea2d51542874c3ed9a1318c42f912b0d7e97ce993761096d65a063b673a7b3a
SSDEEP

6144:DS/3wVyBxl40pPVMHLdL1hALe+2NirdrQdZfwUKD0I:Dm3myV4wVMdoLT2NKclwr

Score

10^/10

cobaltstrike

Malware Config

Signatures

Cobaltstrike family
cobaltstrike

Files

29242eead7505142e0f3fd6f0f2d2b4a101bf362b9fd9104c05816ef82efe208
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 258KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE