General
-
Target
9dd10376e653005fd6fc0bb350cff7b4_cobalt-strike_cobaltstrike_meterpreter_JC.exe
-
Size
205KB
-
MD5
9dd10376e653005fd6fc0bb350cff7b4
-
SHA1
6009b7efc7cd5f685c07c1ad38675521cce9c828
-
SHA256
89ed5bdf2dee16e9fe013f054fc974236ddc667abf24daf4c61e3f6dc27b2b13
-
SHA512
d6d387435c07179517fe762b559ab53770b41fd55da16c342979a9209fb1e553cfab14c3c5ebf3f1f33da4ffc7010336464b42bbdfdbc0eacf7f7948ee9eb7e7
-
SSDEEP
3072:8R3qD93ZgUEf+bA+VgTGRU8ChnlQh1GIUZgOzYDh+SL+pPBj5Ua58U:8RuEfuV4GC8ChlE1GIYppSLcZjd
Score
10/10
Malware Config
Signatures
-
Cobalt Strike reflective loader 1 IoCs
Detects the reflective loader used by Cobalt Strike.
-
Cobaltstrike family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
9dd10376e653005fd6fc0bb350cff7b4_cobalt-strike_cobaltstrike_meterpreter_JC.exe
Headers
Sections