cobaltstrike | a2126067efb86e3128b0604f89c22d08167e2f75049669f0c3031c138422209d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2126067efb86e3128b0604f89c22d08167e2f75049669f0c3031c138422209d
Size

307KB
MD5

617ff8e3a51dad0e436f6b13cacba284
SHA1

4cb5d6434c23dbd77171c9dd4c633e999d3579a1
SHA256

a2126067efb86e3128b0604f89c22d08167e2f75049669f0c3031c138422209d
SHA512

f29e2655d140b0a956f52677f07b73e5aefaf3594bfd3d55ba142784254e9eb38674ccec2a04a781c60811d4289f76e03de1d138e4d103a7e19a01b96ac65345
SSDEEP

6144:K0vzLT72Y0SEzinYKTY1SQshfRPVQe1MZkIYSccr7wbstOjGPECYeixlYGicr:K0bf7SSXYsY1UMqMZJYSN7wbstOjG8fB

Score

10^/10

cobaltstrike

Malware Config

Signatures

Cobaltstrike family
cobaltstrike

Files

a2126067efb86e3128b0604f89c22d08167e2f75049669f0c3031c138422209d
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 256KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE