General
-
Target
6bc99c9259b0ca643f1b50bba8b89fe1_JaffaCakes118
-
Size
268KB
-
MD5
6bc99c9259b0ca643f1b50bba8b89fe1
-
SHA1
a0c30bbddf4748169fb12a31a6bd6f1edbf65b61
-
SHA256
c6bd354e37e1859fab140177e930ab7a2c2f3797e749b03631b76722c89627c8
-
SHA512
c604ba302b5937eff65a23409285851dc667393f4900570fec622674285d76b5262f4797a64df98591cba89fa2d985aa1331137d60513ed960f446e23f493922
-
SSDEEP
3072:sZrNm0q1UmGTUVjsY9vsVfYLVthu1aYYp1V92R1n6/0IU1D5nq6B:sqV+KDCVfenh+Qfg2/0V5n
Score
10/10
Malware Config
Extracted
Family
cobaltstrike
Botnet
0
Attributes
-
watermark
0
Signatures
-
Cobalt Strike reflective loader 1 IoCs
Detects the reflective loader used by Cobalt Strike.
-
Cobaltstrike family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
6bc99c9259b0ca643f1b50bba8b89fe1_JaffaCakes118
Headers
Sections