General
-
Target
2968-12-0x00000000054C0000-0x0000000005501000-memory.dmp
-
Size
260KB
-
MD5
4d09b4964269ac11780c530783aaa155
-
SHA1
96a805afbf1294e909451d4d4ccbf6c9ca88e41e
-
SHA256
38dc89dad1485a7865f56642a8acbcf176b2dba8bd5fecdf8f3ced239e1d770b
-
SHA512
f3983e1ef02469244246a766b1b3c359d6d08849c0b23a53721243ecfabc586218bed874e03d7a8754e73a0ec37bcab14b02edd272b25136088b695b938bf330
-
SSDEEP
3072:NY2vCzrLSp6ard/I8IWkFxwcFHzchZ2CEmAe9JXD1jRUT5o7GBS:C20GJrdA8I7hFTqRP9JXpjO
Score
10/10
Malware Config
Signatures
-
Cobalt Strike reflective loader 1 IoCs
Detects the reflective loader used by Cobalt Strike.
-
Cobaltstrike family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2968-12-0x00000000054C0000-0x0000000005501000-memory.dmp
Headers
Sections