cobaltstrike | 82f46a48812986d4f3cf50270558a49b8b11b5469611f5297369c1984e65e8c0 | Triage

Submit
Reports

Overview

overview

Static

static

82f46a4881...c0.exe

windows7-x64

82f46a4881...c0.exe

windows10-2004-x64

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

82f46a48812986d4f3cf50270558a49b8b11b5469611f5297369c1984e65e8c0.exe

Resource

win7-20221111-en

cobaltstrike pony backdoor collection discovery rat spyware stealer trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

82f46a48812986d4f3cf50270558a49b8b11b5469611f5297369c1984e65e8c0.exe

Resource

win10v2004-20221111-en

cobaltstrike pony backdoor collection discovery rat spyware stealer trojan

windows10-2004-x64

11 signatures

150 seconds

General

Target

82f46a48812986d4f3cf50270558a49b8b11b5469611f5297369c1984e65e8c0
Size

153KB
MD5

6024c2e64ac52e5c7178cfe37d03a406
SHA1

b4747f78526f75909c9a8d73ff8087ec26df7b53
SHA256

82f46a48812986d4f3cf50270558a49b8b11b5469611f5297369c1984e65e8c0
SHA512

c8ee350b877ce0a85f607358e61e3e42026d8d5579011cfb4d71acfd09197cb201d7126052ceac8487361514bc4ec76cba98d5c4ed3caaea0c7e1a88e1eed0a6
SSDEEP

3072:d2jpmyvLmkRvO7GpGjQ20gxe4RDHpIx1bdrWKrUi2OckejJ:Y59Y5jnI4RDHm1bJW8yb

Score

10^/10

cobaltstrike

Malware Config

Signatures

Cobaltstrike family
cobaltstrike

Files

82f46a48812986d4f3cf50270558a49b8b11b5469611f5297369c1984e65e8c0
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy