cobaltstrike | c23210104b9b956015dffc6d8e7d11405f787482192d1ae85d1c459ca9514528 | Triage

Submit
Reports

Overview

overview

Static

static

c23210104b...28.exe

windows7-x64

c23210104b...28.exe

windows10-2004-x64

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

c23210104b9b956015dffc6d8e7d11405f787482192d1ae85d1c459ca9514528.exe

Resource

win7-20220901-en

cobaltstrike backdoor persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

c23210104b9b956015dffc6d8e7d11405f787482192d1ae85d1c459ca9514528.exe

Resource

win10v2004-20220812-en

cobaltstrike backdoor trojan

windows10-2004-x64

1 signatures

150 seconds

General

Target

c23210104b9b956015dffc6d8e7d11405f787482192d1ae85d1c459ca9514528
Size

307KB
MD5

3638c43c96926a3dad6ea6039c214131
SHA1

6b05eaf2b0dae8f1b9c756d8e773226b4999d905
SHA256

c23210104b9b956015dffc6d8e7d11405f787482192d1ae85d1c459ca9514528
SHA512

5f1c700d98c2646535d43137c8f6e0e92e61262a6976bfa687f4634dfbf96712803c613e4be0b013e65fd46c8ddc84f9faa5fd8a655c7bc2f85e3e78414d1786
SSDEEP

6144:K0vzfT72Y0SmzinYKTY1SQshfRPVQe1MZkIYSccr7wbstOoPECYeixlYGicP:K0b77SShYsY1UMqMZJYSN7wbstOo8fvV

Score

10^/10

cobaltstrike

Malware Config

Signatures

Cobaltstrike family
cobaltstrike

Files

c23210104b9b956015dffc6d8e7d11405f787482192d1ae85d1c459ca9514528
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 256KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy