General
-
Target
2024-05-22_dd599dfd899877dd219105ebc9f4edd7_cobalt-strike_cobaltstrike
-
Size
201KB
-
MD5
dd599dfd899877dd219105ebc9f4edd7
-
SHA1
59dc32bd3e4ebddc75574933d582b17658ad5f7e
-
SHA256
6bd060377fc50c81752a6a4c291e9b5d728a4adbb0db6c46dee45d1a8fce6992
-
SHA512
63db7cb0f518d8959c0311be9a5da75315a25522da78380734bfbe4c7e55b3734a1bfafca573b8b9b39c4efb5ce9c1a5f2340d19eeb3e4be23813e0ea6955ccd
-
SSDEEP
3072:0diFtjEf4gkF6YIc9k8zD9+YMU/cJUO2pmXoD3xFjtUihKB5lRz:nJEf1kIYVj1+7U/lbD37jFI
Score
10/10
Malware Config
Signatures
-
Cobaltstrike family
-
Detects Reflective DLL injection artifacts 1 IoCs
Processes:
resource yara_rule sample INDICATOR_SUSPICIOUS_ReflectiveLoader
Files
-
2024-05-22_dd599dfd899877dd219105ebc9f4edd7_cobalt-strike_cobaltstrike