839e0611f794f05bd1ebed8c5d91a4b49b882c31199e87db01998735f3f51b91

Analysis

max time kernel
119s
max time network
120s
platform
windows7_x64
resource
win7-20231129-en
resource tags

arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
submitted
09/05/2024, 20:46

Target

2024-05-09_adbc6b5f49b8885587c96ae08bbdfc13_cobalt-strike_ryuk.exe
Size

781KB
MD5

adbc6b5f49b8885587c96ae08bbdfc13
SHA1

dbf3417c915cf45b60b3904990757ba7ba98d9fb
SHA256

839e0611f794f05bd1ebed8c5d91a4b49b882c31199e87db01998735f3f51b91
SHA512

4b48e4ca1420e6f3d51cf2d1ed1491b2ff217b70ece65b975d6416481c9e23a7a1cd01df556de80cb654817cc588452573712dab7ec3f541ace27931851f5d55
SSDEEP

24576:fPsJcuiD6LaRFdGJm0Q3WKVSwdr13Ek0VA:fwcuu6KFdi2Ga9x3Ek0V

Score

1^/10

C:\Users\Admin\AppData\Local\Temp\2024-05-09_adbc6b5f49b8885587c96ae08bbdfc13_cobalt-strike_ryuk.exe
"C:\Users\Admin\AppData\Local\Temp\2024-05-09_adbc6b5f49b8885587c96ae08bbdfc13_cobalt-strike_ryuk.exe"
1⤵
PID:2368

memory/2368-0-0x0000000140000000-0x00000001400CA000-memory.dmp

Filesize
808KB

Download
memory/2368-1-0x0000000002320000-0x0000000002380000-memory.dmp

Filesize
384KB

Download
memory/2368-7-0x0000000002320000-0x0000000002380000-memory.dmp

Filesize
384KB

Download
memory/2368-10-0x0000000002320000-0x0000000002380000-memory.dmp

Filesize
384KB

Download
memory/2368-12-0x0000000140000000-0x00000001400CA000-memory.dmp

Filesize
808KB

Download