General

  • Target

    2024-09-03_f139b7d69eacbbe0b51418acfad78ce8_cobalt-strike_ryuk

  • Size

    4.7MB

  • MD5

    f139b7d69eacbbe0b51418acfad78ce8

  • SHA1

    aab81b45ea9be9d74cc462de113c8b48004ca7c9

  • SHA256

    19c420c12a53d4ca2ed3ec8a973e934ffd51ceb672cb486cdc7147d795c86a0c

  • SHA512

    994d0f91cb87545975a559680a69a686381cd4132beff4cb0f673f58bbbe6cfa71bfcc009f9149611027b048568de87bea609dd2452fff7a9336f21dc0333c60

  • SSDEEP

    49152:y2AhLGp4btjMK3XAL8Njmbb/0edc+KokvY0n/sHQ4VD//IOSArTpYDOJj40NsOnB:YgpH3/0ed+UsiDWxD527BWG

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-09-03_f139b7d69eacbbe0b51418acfad78ce8_cobalt-strike_ryuk
    .exe windows:10 windows x64 arch:x64

    0b1e209a992c42d76692a91153b83bda


    Headers

    Imports

    Exports

    Sections