General

  • Target

    2024-07-10_a5475eb66cfda3ab057303359613c3b5_cobalt-strike_ryuk

  • Size

    946KB

  • MD5

    a5475eb66cfda3ab057303359613c3b5

  • SHA1

    9c368f1a4435b400d7cd16e08dc26e1fba8806f2

  • SHA256

    758686572570b6c8fd0841c8f0714cc6ad21b6adb82672fa780b85f181ea11f8

  • SHA512

    b8bc4cbcf8e9afb3a18068f02c3996059de0254c61bf17f25528439dcd186fb304f13e42dc1cfc8ae20a0819e1f976592c56c6acca588ec3f2842c23a7499916

  • SSDEEP

    12288:flLMLTHAXoUpkdJAdGyVMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:eTgnpwJ+RGSkQ/7Gb8NLEbeZ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-07-10_a5475eb66cfda3ab057303359613c3b5_cobalt-strike_ryuk
    .exe windows:6 windows x64 arch:x64

    11145c2c07e671cc47c0cfcafd4c3816


    Headers

    Imports

    Sections