Overview

overview

10

Static

static

10

3301d98f29...JC.dll

windows7-x64

1

3301d98f29...JC.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3301d98f2924db22c70d6c7331f8d725_cobalt-strike_cobaltstrike_meterpreter_JC.exe

  • Size

    208KB

  • MD5

    3301d98f2924db22c70d6c7331f8d725

  • SHA1

    f06b8f0acb110e906c769a1cd6c026c130ef9b11

  • SHA256

    aee4433b948d2c0bdfe71dedf4be7d3ab1aca5f8bcbb5282ef6d6f9e898a1721

  • SHA512

    0e429247a3834f54c279459ae0c15f8b39307ffaaab4d19aa5064998a05cf20255c955dc87bc2bbf2d6ade07c544c005455e56f963fdb19ce86cebdd31515dd0

  • SSDEEP

    3072:V/PKthonfsSbRer8CxbJIFaJPkIKmiKtrDlHvORj1Ug/Y5O:V/jfs+Ir8C5yFaJPxlHvCj

Score
10/10
0cobaltstrike

Malware Config

Extracted

Family

cobaltstrike

Botnet

0

Attributes
  • watermark

    0

Signatures

  • Cobalt Strike reflective loader 1 IoCs

    Detects the reflective loader used by Cobalt Strike.

  • Cobaltstrike family
    cobaltstrike
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 3301d98f2924db22c70d6c7331f8d725_cobalt-strike_cobaltstrike_meterpreter_JC.exe
    .dll windows x86


    Headers

    Sections