cobaltstrike | e8c74307732c397fe2ea5c4dd32637a574457e7c79c73a653d3b187f0159cf75 | Triage

Submit
Reports

Overview

overview

Static

static

e8c7430773...75.exe

windows7-x64

e8c7430773...75.exe

windows10-2004-x64

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e8c74307732c397fe2ea5c4dd32637a574457e7c79c73a653d3b187f0159cf75.exe

Resource

win7-20220812-en

cobaltstrike pony backdoor collection discovery rat spyware stealer trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

e8c74307732c397fe2ea5c4dd32637a574457e7c79c73a653d3b187f0159cf75.exe

Resource

win10v2004-20221111-en

cobaltstrike pony backdoor rat spyware stealer trojan

windows10-2004-x64

3 signatures

150 seconds

General

Target

e8c74307732c397fe2ea5c4dd32637a574457e7c79c73a653d3b187f0159cf75
Size

146KB
MD5

99f5b94c1d1d31a82134b49237e5a92c
SHA1

9bdfc09ce414e8c266424621b3e9c264addecdab
SHA256

e8c74307732c397fe2ea5c4dd32637a574457e7c79c73a653d3b187f0159cf75
SHA512

138fe77c17f25249c2a326c99f5756ade3218466ebe30cca0df496e4b51b8f5dd60a7760e11580aab750ea1e2d358dd0c7d63486ba9b3e1afcd42b509a6255c7
SSDEEP

3072:xDDyMnV59baBA5ZjjYrx0Z01FAbZ3eAIplpaJgnGPeg9guc:ByWABAvjjY9JbAb0naePyguc

Score

10^/10

cobaltstrike

Malware Config

Signatures

Cobaltstrike family
cobaltstrike

Files

e8c74307732c397fe2ea5c4dd32637a574457e7c79c73a653d3b187f0159cf75
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy