Overview

overview

1

Static

static

1

2024-01-25...uk.exe

windows7-x64

2024-01-25...uk.exe

windows10-2004-x64

Analysis

  • max time kernel
    0s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25-01-2024 18:28

Sharing

Copy URL
Twitter E-mail

Errors

Reason
platform exec: image=C:\Users\Admin\AppData\Local\Temp\2024-01-25_71e9b7d60ae65349b69be55bb35d5f3b_cobalt-strike_ryuk.exe command="C:\Users\Admin\AppData\Local\Temp\2024-01-25_71e9b7d60ae65349b69be55bb35d5f3b_cobalt-strike_ryuk.exe" wdir=C:\Users\Admin\AppData\Local\Temp Payload error: The application has failed to start because its side-by-side configuration is incorrect. Please see the application event log or use the command-line sxstrace.exe tool for more detail.
Report Analysis Logs

General

  • Target

    2024-01-25_71e9b7d60ae65349b69be55bb35d5f3b_cobalt-strike_ryuk.exe

  • Size

    993KB

  • MD5

    71e9b7d60ae65349b69be55bb35d5f3b

  • SHA1

    fe58385596a76111419925450f0f6b149febf403

  • SHA256

    88a58034814821eb6657c83d7a6e88a4785d77034183337c28a48ae08e7b3ab6

  • SHA512

    896ab6db000ab2d6a5ab017917ae1537f7572436e4880d65fbf3380f06e71369ac33a48f37e109cd6e8b0fcfbbf634967c3d7912cbf059c8fd27a08236861af5

  • SSDEEP

    12288:Qo+vQrzwAqst8c7sIlb4l7c6RK9MR2/Z4Yd4EN6iIo0kbRA:mQrMAjNl69RKa6fd4EsiIpkbRA

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-01-25_71e9b7d60ae65349b69be55bb35d5f3b_cobalt-strike_ryuk.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-01-25_71e9b7d60ae65349b69be55bb35d5f3b_cobalt-strike_ryuk.exe"
    1⤵
      PID:2444

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads