Overview

overview

10

Static

static

10

2028-55-0x...ry.dll

windows7-x64

3

2028-55-0x...ry.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    2028-55-0x0000000000690000-0x00000000006CD000-memory.dmp

  • Size

    244KB

  • MD5

    53db0c4806b3b198726b1f468f699518

  • SHA1

    0bcbb012a5ae276f69582f9784fd23b9f767c5cb

  • SHA256

    5757231165df4863d98a8e4fc669cb72fb87e0c7dd8432ada5a421834cbe3369

  • SHA512

    0d06e2945d594299f4d16e9d0d3c42c746143986abcda3f1d0a2c7e18033b8af0519c40c78ddac1190ce35e3f8e505154691e02fecd6ef5a4b29514f4b5c51d9

  • SSDEEP

    3072:iwRPdEfWbz+EiCiONQ2yZDAf0+ECUFu6FjNUT5O2I8z:/EfQzLbq2yZu0FFuSj

Score
10/10
cobaltstrike

Malware Config

Signatures

  • Cobalt Strike reflective loader 1 IoCs

    Detects the reflective loader used by Cobalt Strike.

  • Cobaltstrike family
    cobaltstrike
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2028-55-0x0000000000690000-0x00000000006CD000-memory.dmp
    .dll windows x86


    Headers

    Sections