cobaltstrike | ce682b73b438132210ceaaa42185ecb8b215e341dfe01814f4fbfda5801028a6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ce682b73b438132210ceaaa42185ecb8b215e341dfe01814f4fbfda5801028a6
Size

312KB
MD5

7cf8e75ea88d2deab1b5224a5061d5fd
SHA1

398fc124b36c2a5545659e83aebbd253d367240d
SHA256

ce682b73b438132210ceaaa42185ecb8b215e341dfe01814f4fbfda5801028a6
SHA512

369206bc799ffe6d1e1bb59c34bf93e0e1ff3178dbbec9cb0b3e2b95771a665c6b7b0834b08de1ac51d3cf4c29f6e12d3430a9bf510baad967dd55ee0e3b4725
SSDEEP

6144:I+1VyBsl40pPgMHLdL1hALe+2NirdrQdZ2wUKD0mm7:IEyE4wgMdoLT2NKc8w07

Score

10^/10

cobaltstrike

Malware Config

Signatures

Cobaltstrike family
cobaltstrike

Files

ce682b73b438132210ceaaa42185ecb8b215e341dfe01814f4fbfda5801028a6
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 259KB - Virtual size: 259KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE