General

  • Target

    2024-07-04_d158f944d8ce4c39341ee968a65de670_cobalt-strike_ryuk

  • Size

    946KB

  • MD5

    d158f944d8ce4c39341ee968a65de670

  • SHA1

    ecc6db41fa9fa9ff799778e0bd72742a70e8e7f9

  • SHA256

    ab312acf396ff038b31babf9e3e27b408929962c3c1118b647b0fe87816559ef

  • SHA512

    16193cb61dd484dc24de7040eeb0428dabf54ba117a2d349caab095b30788ab712c1a6628252af6c331f697e046e51ec61ff18b162b1fda5452b11fc51f16a37

  • SSDEEP

    24576:6TgnpwJ+R9SRQ5UOOU62FBnO+E222YJbNEUQKGOb:i0dv5UbU62FAQ228QKl

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-07-04_d158f944d8ce4c39341ee968a65de670_cobalt-strike_ryuk
    .exe windows:6 windows x64 arch:x64

    11145c2c07e671cc47c0cfcafd4c3816


    Headers

    Imports

    Sections