Overview

overview

9

Static

static

7

Cobalt-Mai...er.exe

windows7-x64

9

Cobalt-Mai...er.exe

windows10-2004-x64

9

Cobalt-Mai...th.dll

windows7-x64

9

Cobalt-Mai...th.dll

windows10-2004-x64

9

Cobalt-Mai...or.exe

windows7-x64

1

Cobalt-Mai...or.exe

windows10-2004-x64

1

Cobalt-Mai...lt.exe

windows7-x64

9

Cobalt-Mai...lt.exe

windows10-2004-x64

9

Cobalt-Mai...ox.dll

windows7-x64

1

Cobalt-Mai...ox.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Cobalt-Main.rar

  • Size

    17.1MB

  • MD5

    b8c7283cfa965e8f960a62f041fe69c2

  • SHA1

    43f7005b411b944046a7063170567e2a1a733432

  • SHA256

    87b79299b17bd64c49dd2681f278dfffdf95848a944d20c68c807e44f5d320cb

  • SHA512

    b0734b795f77123ab2f14a1afc223be05adfa349ccf5f62021542379135d44c964f2b5338cc9f3b8a023c743a12613ef599f8f3c41bee89d09baafbac0ef13a3

  • SSDEEP

    393216:RdFpV00KEjQJ5Wfj2PRZ7gVES+1HuEPceRJywacVUf16ven2y48AEJAcQIVG8:RVV00AW4/gk1pcpwacfen2y4KQ8

Score
7/10
themida

Malware Config

Signatures

  • Themida packer 2 IoCs

    Detects Themida, an advanced Windows software protection system.

    themida
  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

Files

  • Cobalt-Main.rar
    .rar

    Password: 1211111111111113

  • Cobalt-Main/Bin/Cobalt-Updater.exe
    .exe windows:6 windows x64 arch:x64

    Password: 1211111111111113


    Headers

    Sections

  • Cobalt-Main/Bin/CobaltAuth.dll
    .dll windows:6 windows x86 arch:x86

    Password: 1211111111111113


    Headers

    Exports

    Sections

  • Cobalt-Main/Bin/injector.exe
    .exe windows:6 windows x64 arch:x64

    Password: 1211111111111113

    cac499345d4c664a3859237e84698cdf


    Headers

    Imports

    Sections

  • Cobalt-Main/Cobalt.exe
    .exe windows:4 windows x86 arch:x86

    Password: 1211111111111113

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Cobalt-Main/FastColoredTextBox.dll
    .dll windows:4 windows x86 arch:x86

    Password: 1211111111111113

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections