General

  • Target

    2024-08-17_efbf7997f5d631843a750e7669dafd97_cobalt-strike_ryuk

  • Size

    2.1MB

  • MD5

    efbf7997f5d631843a750e7669dafd97

  • SHA1

    0b3cf38373b20b3fef21072d79ac80622bfa83b1

  • SHA256

    bbebf7b80c663b18b052c51e4927b3d51303a94beafe3e8b69e70507263c4ada

  • SHA512

    35b8f15f84bb9bdc3b208303d00c66be0ff3b630c1070137cb5f043d0e2f7c6027a9916db67d01e3bd6504c89dcffe9c801534671809feb51b92f54eb59e2dcf

  • SSDEEP

    49152:N5ym41PAcX8FxFCDIZe62FikS1oAQgAT76sQuE:mNF8F7C3i3qGsQr

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-08-17_efbf7997f5d631843a750e7669dafd97_cobalt-strike_ryuk
    .exe windows:10 windows x64 arch:x64

    b5540b9677800b644c93c8b86520f147


    Headers

    Imports

    Exports

    Sections