b71c5e7712fbe1da19f9e4f98f6514ea337a73272263e8fd77ca1b525be7a157

Analysis

max time kernel
148s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
12/10/2024, 09:26

Target

2024-10-12_13ca06312f1ee25b9e2b66197993b5da_cobalt-strike_ryuk.exe
Size

2.1MB
MD5

13ca06312f1ee25b9e2b66197993b5da
SHA1

9ba8f52d25ac74d082e75f7de170328afa3fed43
SHA256

b71c5e7712fbe1da19f9e4f98f6514ea337a73272263e8fd77ca1b525be7a157
SHA512

4c057165d30cf1a67f0f19c939ad994d52d5fed79817d4e90ccbaaed320d8f905a0c0cd6abd164b430c23c40149a4572c41eee5eac80c08046bfc5d09bdf8034
SSDEEP

49152:GjFX33t4INlfTqkUMLu/52bulcI1wXZTBz55kQ/qoLEw:G7fTqmeX10qo4w

Score

1^/10

C:\Users\Admin\AppData\Local\Temp\2024-10-12_13ca06312f1ee25b9e2b66197993b5da_cobalt-strike_ryuk.exe
"C:\Users\Admin\AppData\Local\Temp\2024-10-12_13ca06312f1ee25b9e2b66197993b5da_cobalt-strike_ryuk.exe"
1⤵
PID:4872

memory/4872-9-0x00000000001A0000-0x0000000000200000-memory.dmp

Filesize
384KB

Download
memory/4872-10-0x00000000001A0000-0x0000000000200000-memory.dmp

Filesize
384KB

Download
memory/4872-12-0x0000000140000000-0x000000014022B000-memory.dmp

Filesize
2.2MB

Download
memory/4872-8-0x0000000140000000-0x000000014022B000-memory.dmp

Filesize
2.2MB

Download
memory/4872-1-0x00000000001A0000-0x0000000000200000-memory.dmp

Filesize
384KB

Download