General

  • Target

    2024-05-30_7672f2988b8cf2cf424da6d3f7dc67e4_cobalt-strike_ryuk

  • Size

    946KB

  • MD5

    7672f2988b8cf2cf424da6d3f7dc67e4

  • SHA1

    67f8997fec1d85a2f74dff62fd8c60325118e033

  • SHA256

    1d1e86459949b41997dd049ee9c70fbdb77e548e6f9fb7ab76db61dbe45ac937

  • SHA512

    fd2f795ad7c8ee9ef3dc00b12846412e7f9384d955b31d2a492e02b59dac58331cfc7754f05c92e9f6e2195a675b51998f559274939c61a34585ce1c04821231

  • SSDEEP

    12288:tlLMLTHAXoUpkdJAdGy0MTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:ITgnpwJ+RVSkQ/7Gb8NLEbeZ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-05-30_7672f2988b8cf2cf424da6d3f7dc67e4_cobalt-strike_ryuk
    .exe windows:6 windows x64 arch:x64

    11145c2c07e671cc47c0cfcafd4c3816


    Headers

    Imports

    Sections