General
-
Target
NEAS.2023-09-09_0ffb92558272bd8775e0518199eb0655_cobalt-strike_cobaltstrike_meterpreter_JC.exe
-
Size
234KB
-
MD5
0ffb92558272bd8775e0518199eb0655
-
SHA1
d1e2d10588c6b8a4dad20813aeeac676ea87a704
-
SHA256
a2adb0209a327d5b21c68cdbbc9c0d42b6e0b412f1daf683009ba1ddc3b8f4ef
-
SHA512
04112106c690d1cc3929c7f6ef03f83f3512f30e6acdc2cd1f1c339abaed0a5b27bbf474edf1c9333120888f9c443d6450ee9045317ceb35fb7415a509e412fd
-
SSDEEP
6144:3rz6ptN5UzZH5LDKRYH0i22GbJrXjAfR4rjhwj:3H6P/UtZ4YHUPjhwj
Score
10/10
Malware Config
Signatures
-
Cobalt Strike reflective loader 1 IoCs
Detects the reflective loader used by Cobalt Strike.
-
Cobaltstrike family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
NEAS.2023-09-09_0ffb92558272bd8775e0518199eb0655_cobalt-strike_cobaltstrike_meterpreter_JC.exe
Headers
Sections