General

  • Target

    2024-04-16_78dd75adcf7c515f84828efe1f1e3ea9_cobalt-strike_lockbit

  • Size

    288KB

  • MD5

    78dd75adcf7c515f84828efe1f1e3ea9

  • SHA1

    adebb63cfe27b4fc59d76e85e171b8ac52c7f472

  • SHA256

    d34fe2ab12db45940866e2a4054c276b655d8ce6a88b9bfff943da70ab4df85f

  • SHA512

    981f13c4ae8e6db93af2b74b8fbf7dd9768b0431a918cbe5ffbafbe9bd2f894beceeff70c685644f41ef720e0f16bcfb9ff5ab6f5b73ace164b61eda777ffad3

  • SSDEEP

    3072:m4jPfhWV9XBb0MAtrg0OoHpFcNTXT2pTnVR1g2br54Qun9UItLpCEcbqGpYl7WUd:m4jUXB0MZDoJFcp0tgI6QkUIcbpO5zx7

Score
10/10

Malware Config

Signatures

  • Detects Windows exceutables bypassing UAC using CMSTP COM interfaces. MITRE (T1218.003) 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-04-16_78dd75adcf7c515f84828efe1f1e3ea9_cobalt-strike_lockbit
    .exe windows:5 windows x86 arch:x86

    0db8876464e8e995f3ae002d75c7bbeb


    Headers

    Imports

    Sections