General

  • Target

    2024-06-02_1f5b3365390a11729706b2a530806ff4_cobalt-strike_ryuk

  • Size

    796KB

  • MD5

    1f5b3365390a11729706b2a530806ff4

  • SHA1

    927d5205d3a9e1d8fc34b0eaf79a50e54b590d7e

  • SHA256

    9c0ff90332f792ddbd3d68bc2dc062a0074818f098b1dc5edcebdabd24cf8630

  • SHA512

    a24ad5b30acc2fe9b22422fcd8435014a779220a55b3598662ab70cbae6ebfb833cd5d982654246437e8d4ecb7ef2d587daf6d0279e885d5101442201d00f6d1

  • SSDEEP

    12288:9XDCAZzP/w24lh1PU6DQPHPcJrX+YIyjSIHpVXiV8Ih8Sv/uDZTk9ry:kANw2431lDmKBJfJVSVTLgBe

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-06-02_1f5b3365390a11729706b2a530806ff4_cobalt-strike_ryuk
    .exe windows:6 windows x64 arch:x64

    33d31a4df5121c8c368d8b7a65733fa3


    Headers

    Imports

    Sections