cobaltstrike | ebdf9cd5cda9666c9382704e7e48bd6234d5822dca7b552c2c49cb963e8b3cec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ebdf9cd5cda9666c9382704e7e48bd6234d5822dca7b552c2c49cb963e8b3cec
Size

113KB
MD5

42a9d6f335829ba49911918aca9094d1
SHA1

c586cec70fd3a320329252596b6efe3c2d395933
SHA256

ebdf9cd5cda9666c9382704e7e48bd6234d5822dca7b552c2c49cb963e8b3cec
SHA512

e17f21e46b5a079e8f32a4c4987875be80731e2daf37b5f6bd3b048905dd1a291d2b2683f635d2391c5c42520cae08cfba51bb8be46ee0f1b20d920a7d3cbf86
SSDEEP

3072:kTY7VKnev6G8HyyNg1xYFer6mo1GxUkcm0E:sgVHvqPNgXek30E

Score

10^/10

cobaltstrike

Malware Config

Signatures

Cobaltstrike family
cobaltstrike

Files

ebdf9cd5cda9666c9382704e7e48bd6234d5822dca7b552c2c49cb963e8b3cec
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE