General

  • Target

    2024-02-28_7cced2683d83fed5bfa4d9b2876950ed_cobalt-strike_lockbit

  • Size

    288KB

  • MD5

    7cced2683d83fed5bfa4d9b2876950ed

  • SHA1

    b2cc310d43a4e81d5d798bbee75f774d1d8bf93c

  • SHA256

    d02cd3159fc516d61b1248d8bc98dc807bce434e6f77c38dcc6f74a8841475c2

  • SHA512

    b97142c7b9c0808f7a5959e34b2c11316282b3edbde7f50e03d4f4bc8270ac01d5ff19af32f4a18d2cceacd0b7cf0722dbcea639210f8d47aa47953ece16b365

  • SSDEEP

    3072:m4jPfhWV9XBb0MAtrg0OoHpFcNTXT2pTnVR1g2br54Qun9UItLpCEcbqGpYl7WUk:m4jUXB0MZDoJFcp0tgI6QkUIcbpO5zxC

Score
10/10

Malware Config

Signatures

  • Detects Windows exceutables bypassing UAC using CMSTP COM interfaces. MITRE (T1218.003) 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-02-28_7cced2683d83fed5bfa4d9b2876950ed_cobalt-strike_lockbit
    .exe windows:5 windows x86 arch:x86

    0db8876464e8e995f3ae002d75c7bbeb


    Headers

    Imports

    Sections