7bddff60ca0f9bc24334efe8e9376145e349d707834eca1bd28d9c29118ae6a0

Analysis

max time kernel
121s
max time network
122s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
14/05/2024, 15:32

Target

2024-05-14_ab9df38c6a856a2d6de6c5a180c29b80_cobalt-strike_ryuk.exe
Size

796KB
MD5

ab9df38c6a856a2d6de6c5a180c29b80
SHA1

caee9844a454108c603a31cb1c03f6cea4d5b28e
SHA256

7bddff60ca0f9bc24334efe8e9376145e349d707834eca1bd28d9c29118ae6a0
SHA512

f8e5f8026f6b548592853ce22846c25fefec81c9b34c5b460a1e80b16178a3bd5b63bb68da673f8550cae93b87682c683aba786b6782a3bb867a62ed77c40f01
SSDEEP

12288:NXDCAZzP/w24lhoGt/sB1KcYmqgZvAMlUoUjG+YKtMfnkOeZb5JYiNAgAPh:0ANw243Pt/sBlDqgZQd6XKtiMJYiPU

Score

1^/10

C:\Users\Admin\AppData\Local\Temp\2024-05-14_ab9df38c6a856a2d6de6c5a180c29b80_cobalt-strike_ryuk.exe
"C:\Users\Admin\AppData\Local\Temp\2024-05-14_ab9df38c6a856a2d6de6c5a180c29b80_cobalt-strike_ryuk.exe"
1⤵
PID:2420

memory/2420-0-0x0000000002320000-0x0000000002380000-memory.dmp

Filesize
384KB

Download
memory/2420-8-0x0000000140000000-0x00000001400CF000-memory.dmp

Filesize
828KB

Download
memory/2420-9-0x0000000002320000-0x0000000002380000-memory.dmp

Filesize
384KB

Download
memory/2420-13-0x0000000002320000-0x0000000002380000-memory.dmp

Filesize
384KB

Download
memory/2420-12-0x0000000140000000-0x00000001400CF000-memory.dmp

Filesize
828KB

Download