Overview

overview

10

Static

static

10

3348-134-0...ry.dll

windows7-x64

3

3348-134-0...ry.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    3348-134-0x0000000003890000-0x00000000038CE000-memory.dmp

  • Size

    248KB

  • MD5

    a2cddc554538a8abaa4f2c1b285eb863

  • SHA1

    9b01f2ae99366e94c4eecd79fe4b47f4b1361214

  • SHA256

    d561f3cdd4c3c36b705be137685484b8aedc06c6289cd52a2b00bf6f261d0686

  • SHA512

    737cd0a5e47129cf4dbf9fbfa61da048594c09de13357869d153862a941334752f7f820271ec8ff04e66443fa071991aa691f860cd37d065a0cdbdca6c1a44c8

  • SSDEEP

    3072:dD7itNXucgpjwd8Pfl8C0dT50CUQ7OIRWRin+YNjpUKQ5Gvj:dkXu1psot8CK10Cj7nVn+kj

Score
10/10
cobaltstrike

Malware Config

Signatures

  • Cobalt Strike reflective loader 1 IoCs

    Detects the reflective loader used by Cobalt Strike.

  • Cobaltstrike family
    cobaltstrike

Files

  • 3348-134-0x0000000003890000-0x00000000038CE000-memory.dmp
    .dll windows x86


    Headers

    Sections