General

  • Target

    2024-05-14_f787a8ae61ec099594b31f212a2f1843_cobalt-strike_ryuk

  • Size

    984KB

  • MD5

    f787a8ae61ec099594b31f212a2f1843

  • SHA1

    fe8e6113b5fc4c92d140832d59ef1f6c3f021c44

  • SHA256

    ee60773621eda509678f60a511c2ccaf420f16a50e7b1b6860c00b8bc64492e0

  • SHA512

    4b4a3b3d12933b56040bee2ee11e6e4844dc050c55da936fcc0abef6c4fcf3c94383af86c08a48223fe800ab235f5ae4f34aec0511914ca1b9b877da410b3da4

  • SSDEEP

    12288:cXDCAZzP/w24lhjIxn85c6S4Hb4849nIYVjIlCOU4hog96o2gZ:fANw243j65gcTVjUCs2Vo2

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-05-14_f787a8ae61ec099594b31f212a2f1843_cobalt-strike_ryuk
    .exe windows:6 windows x64 arch:x64

    33d31a4df5121c8c368d8b7a65733fa3


    Headers

    Imports

    Sections