d6ded138de4a7f84970948a9d0c9b13e5e910b43219ad720961077003e894ae8

Analysis

max time kernel
110s
max time network
146s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
07/09/2024, 19:50

Target

2024-09-07_a3bd622be319d3b62cd2fd1a58c95007_cobalt-strike_ryuk.exe
Size

2.1MB
MD5

a3bd622be319d3b62cd2fd1a58c95007
SHA1

ccdce92e1a8a4a1f0bbdde9cfc24b198ef151cb1
SHA256

d6ded138de4a7f84970948a9d0c9b13e5e910b43219ad720961077003e894ae8
SHA512

0016ea1541f4b7a209a0c24102944c2cd72009856ff6b25a48157692deb7804923e9141968734c88314342c0ed222f1712f394445e3c16a7e90ac3b581d689ad
SSDEEP

49152:l59PYHvI7wi/2IKuLFrFXlMWaxbgeDmg27RnWGj:lGg2IKgMdD527BWG

Score

1^/10

C:\Users\Admin\AppData\Local\Temp\2024-09-07_a3bd622be319d3b62cd2fd1a58c95007_cobalt-strike_ryuk.exe
"C:\Users\Admin\AppData\Local\Temp\2024-09-07_a3bd622be319d3b62cd2fd1a58c95007_cobalt-strike_ryuk.exe"
1⤵
PID:2324

memory/2324-0-0x0000000000800000-0x0000000000860000-memory.dmp

Filesize
384KB

Download
memory/2324-10-0x0000000000800000-0x0000000000860000-memory.dmp

Filesize
384KB

Download
memory/2324-9-0x0000000000800000-0x0000000000860000-memory.dmp

Filesize
384KB

Download
memory/2324-12-0x0000000140000000-0x0000000140234000-memory.dmp

Filesize
2.2MB

Download
memory/2324-8-0x0000000140000000-0x0000000140234000-memory.dmp

Filesize
2.2MB

Download