General

  • Target

    2023-08-23_43ec38d5430b8bb90d8876850c1d4167_cobalt-strike_cobaltstrike_meterpreter_JC.exe

  • Size

    218KB

  • MD5

    43ec38d5430b8bb90d8876850c1d4167

  • SHA1

    fbe1725ec61f7a18cc4eac08b2d69c6c810fe91c

  • SHA256

    16d9277c9ef9189fe2fe46a6395cdcb5a7997b7bdd58f031e6d5b78dcb901da1

  • SHA512

    dadd519a94d092f34b320ba8d2ccced751fbebf64fa2478bf45f52a0e13ecd0e172f98f97810d3162e7389a924bfd3597d7be856d4d91608050ab9d0653b4697

  • SSDEEP

    3072:MfyTFpXSc43UtiD8Umh8I6lk0bF+EjJeNDU2a7i78nif4RjdU25XBS:MfsD4ktiD8UI8I66C+6AsXnif4jl

Score
10/10

Malware Config

Signatures

  • Cobalt Strike reflective loader 1 IoCs

    Detects the reflective loader used by Cobalt Strike.

  • Cobaltstrike family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2023-08-23_43ec38d5430b8bb90d8876850c1d4167_cobalt-strike_cobaltstrike_meterpreter_JC.exe
    .dll windows x86

    dd2ee89b38b455d38772c37d994f2beb


    Headers

    Imports

    Exports

    Sections