MalwareBazaar Database
This page shows some basic information the YARA rule CobaltStrike_Resources_Artifact32_v3_14_to_v4_x including corresponding malware samples.
Database Entry
| YARA Rule: | CobaltStrike_Resources_Artifact32_v3_14_to_v4_x |
|---|---|
| Author: | gssincla@google.com |
| Description: | Cobalt Strike's resources/artifact32{.dll,.exe,big.exe,big.dll,bigsvc.exe} signature for versions 3.14 to 4.x and resources/artifact32svc.exe for 3.14 to 4.x and resources/artifact32uac.dll for v3.14 and v4.0 |
| Firstseen: | 2022-12-12 04:47:05 UTC |
| Lastseen: | 2024-08-26 12:42:33 UTC |
| Sightings: | 59 |
Malware Samples
The table below shows all malware samples that matching this particular YARA rule (max 1000).
| Firstseen (UTC) | SHA256 hash | Tags | Signature | Reporter |
|---|