cobaltstrike | ee5f94e9d402ed55081859727fd68108_cobalt-strike_cobaltstrike_meterpreter_JC[.]exe

General

Target

ee5f94e9d402ed55081859727fd68108_cobalt-strike_cobaltstrike_meterpreter_JC.exe
Size

206KB
MD5

ee5f94e9d402ed55081859727fd68108
SHA1

7fac309c8394dccde82715bc88d9f56a89c21b61
SHA256

8e1071977bdbaf69ebcf78a2320a216afed6a706a840e5eac5b0b474e339ea24
SHA512

f42f03d052887d6855f66fadb0b6c548422dd101fd67c014aa993b0fd19f49697fb851f8521e3a3a7b194fdf27ba3dfb3d4bf3ee80954a0470a89d8cb537256d
SSDEEP

3072:cOZl41JXuwmn7WyDKU8Cw7v3xKwVj4sKvWbUNRjlU/5Kj:cOeXuXnf+U8CIvxBjHbU7j

Score

10^/10

0 cobaltstrike

Family

cobaltstrike

Botnet

0

Attributes

Cobalt Strike reflective loader 1 IoCs

Detects the reflective loader used by Cobalt Strike.

resource	yara_rule
sample	cobalt_reflective_dll

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ee5f94e9d402ed55081859727fd68108_cobalt-strike_cobaltstrike_meterpreter_JC.exe