cobaltstrike | NEAS[.]2023-09-05_0e008e8d49c16ec57ae4d078bb6b0a5e_cobalt-strike_cobaltstrike_meterpreter_JC[.]exe

General

Target

NEAS.2023-09-05_0e008e8d49c16ec57ae4d078bb6b0a5e_cobalt-strike_cobaltstrike_meterpreter_JC.exe
Size

203KB
MD5

0e008e8d49c16ec57ae4d078bb6b0a5e
SHA1

0f91b7f1c7a494940d010e24ff6e3def00474456
SHA256

7a6f7736b40ae676df4aefc0a3e0e14a187297ada2425731e50bceececa0ebe8
SHA512

0dc4ad0f2822a75c9124be2adf85cc3ba5223414894dea64fb1352630d59928d2852a9567a7283ea9e6bd97ff032bfac9a1c5f0c90813b2a9d8f982f2a46d8bd
SSDEEP

3072:D/iGaPEEfxagSAWrcxp18CtH3y8ltrNJMefQWDsQa8r4kWFjpUr5V:D/TEfwg6rc/18CVXHrNJRfQur4kWj

Score

10^/10

0 cobaltstrike

Family

cobaltstrike

Botnet

0

Attributes

Cobalt Strike reflective loader 1 IoCs

Detects the reflective loader used by Cobalt Strike.

resource	yara_rule
sample	cobalt_reflective_dll

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.2023-09-05_0e008e8d49c16ec57ae4d078bb6b0a5e_cobalt-strike_cobaltstrike_meterpreter_JC.exe