General
-
Target
a20f35994d2d514e22b2a58615080e5f_cobalt-strike_cobaltstrike_meterpreter_JC.exe
-
Size
234KB
-
MD5
a20f35994d2d514e22b2a58615080e5f
-
SHA1
17dcca4e7698871be8477b152dfc9c4c111dbd4a
-
SHA256
d2ee259edb7db973bb83609e0f04dfd96a9b4d909995d17b8afdf628aee29340
-
SHA512
0e2640cd5c39343836b91e3ff1c70032878554fdf85c904dc65100fe10033a5d25bfa0f9d3339ec8360248b47bc79d42e4f432cd3a7d06cfff5a17dd7a3bc5be
-
SSDEEP
3072:hvv9C28J+IVxMdZHRxg4oCBX1tOEqaQW6tIWq2/E0mCeELTnpb9jdUi5m:hvvCJ+wxcZHxXXUaQW6uWpQxgTnppj
Score
10/10
Malware Config
Signatures
-
Cobalt Strike reflective loader 1 IoCs
Detects the reflective loader used by Cobalt Strike.
-
Cobaltstrike family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
a20f35994d2d514e22b2a58615080e5f_cobalt-strike_cobaltstrike_meterpreter_JC.exe
Headers
Sections