General

  • Target

    1972-74-0x00000000021D0000-0x000000000221F000-memory.dmp

  • Size

    316KB

  • MD5

    d37f63e73aea39a56ba9ce7e25b2f053

  • SHA1

    53e80b497ebbf42f21e995153127255cf8cfb879

  • SHA256

    9e6b89b0b5812fcdc5ccab8b97c0ff12dfb59998d3601fee215f4b7d1d261424

  • SHA512

    3ba47442627d9e47cb6a682b678d4d24a27fbcee8e0da46f3ef43d9f8b908c7668feb5a381368c4b9023cbd492aa34e5d1f47a1b5d9f4d4de0c7765b8f9d8b81

  • SSDEEP

    6144:uJqVG5d1IpMyibgkTZI6jHID90aLFfUvH/:u3d6tevox7FfW

Score
10/10

Malware Config

Extracted

Family

cobaltstrike

Botnet

0

Attributes
  • watermark

    0

Signatures

  • Cobaltstrike family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1972-74-0x00000000021D0000-0x000000000221F000-memory.dmp
    .dll windows x64


    Headers

    Sections