Overview

overview

10

Static

static

10

NEAS.2023-...JC.dll

windows7-x64

3

NEAS.2023-...JC.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.2023-09-05_e6d3d392392dc78ece21d08f36072dcc_cobalt-strike_cobaltstrike_meterpreter_JC.exe

  • Size

    206KB

  • MD5

    e6d3d392392dc78ece21d08f36072dcc

  • SHA1

    a019fd08bf1f361cea277907d720ec60f92a4ba6

  • SHA256

    1a9c50b635da1a0e8d3292fafab45e0b186ff70a9c3532f0f62f06cbcf2e6158

  • SHA512

    b0eec97750e9d13ea49f01dbe9b22d7e05e9e01505fa3029b65d9304ffc870e32eaf65e94685556bc68c95609e9f0d6e053e4c12619473dba53c3d7e4e623caa

  • SSDEEP

    3072:QAwjlbXu4RYB4fDK8CMnlHkccWGMFYUSoxJBEVjlUv5WE:QzXuUYSW8CulEc1GM7xJBAjU

Score
10/10
0cobaltstrike

Malware Config

Extracted

Family

cobaltstrike

Botnet

0

Attributes
  • watermark

    0

Signatures

  • Cobalt Strike reflective loader 1 IoCs

    Detects the reflective loader used by Cobalt Strike.

  • Cobaltstrike family
    cobaltstrike
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.2023-09-05_e6d3d392392dc78ece21d08f36072dcc_cobalt-strike_cobaltstrike_meterpreter_JC.exe
    .dll windows:5 windows x86


    Headers

    Sections