General

  • Target

    2024-06-02_2de38b0fd581c0b70bee982f9c25fc7c_cobalt-strike_lockbit

  • Size

    449KB

  • MD5

    2de38b0fd581c0b70bee982f9c25fc7c

  • SHA1

    eda6923a0c07f38e6ad5d669aa4a2e589a08816a

  • SHA256

    5680a5bb772138ed916d6b50665b5387f40103c23b5a993214bce459f7248f83

  • SHA512

    ef532cc0b426c44cad144ef3bf0dfa93450632d880d6f66ae7cdce15af353cab6b649b0389202a5639bdd33ca88caccb1a7a2af8ef0bb998e41b451b8455969f

  • SSDEEP

    6144:47F7M93Mmy1DUy5KFoP3ZDBtTI7ZGv9X6sB9Pv66mN1xQol0XAD35m0ampO83rvI:4SVM51qFkZfB/mN1eKQG5+YVG

Score
10/10

Malware Config

Signatures

  • Detects Windows exceutables bypassing UAC using CMSTP COM interfaces. MITRE (T1218.003) 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-06-02_2de38b0fd581c0b70bee982f9c25fc7c_cobalt-strike_lockbit
    .exe windows:5 windows x64 arch:x64

    dcad9ef05274e39540d32c7da87828f7


    Headers

    Imports

    Sections