cobaltstrike | 2216-18-0x0000000003E50000-0x0000000003E8E000-memory[.]dmp

General

Target

2216-18-0x0000000003E50000-0x0000000003E8E000-memory.dmp
Size

248KB
MD5

d6ee4599c3a7a56c13862d2dd3149508
SHA1

4828d62ee349f92149a20622d2c6ffe7d0bfb587
SHA256

c1ecbd4d30c8c330e3f56f0d5322d1721f98d272f3ac6a76813896f20e5ba826
SHA512

dfdac152e99370afa8295ce64d7ad8420b46003632d196f8e87fa2a3a5e418ef16923f7a644725fd712e8be316f7a57f0609ae887da55986871036057f292dff
SSDEEP

3072:P4O26N+lfzuIrZB8Cu7Fx70t+kRnb4u6xvq/otjxUJY5C5:P47fzxf8Cc30t+kyHvq/0jm

Score

10^/10

cobaltstrike

Cobalt Strike reflective loader 1 IoCs

Detects the reflective loader used by Cobalt Strike.

resource	yara_rule
sample	cobalt_reflective_dll

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2216-18-0x0000000003E50000-0x0000000003E8E000-memory.dmp