General

  • Target

    0a54765525a72c42edb0794b3995752213af4c3370b5c8940c855e59678ca87c

  • Size

    72KB

  • MD5

    72d82d05977146607ba9b63cdc7ea915

  • SHA1

    00669920968aa05feea2211cef42f236a3d67517

  • SHA256

    0a54765525a72c42edb0794b3995752213af4c3370b5c8940c855e59678ca87c

  • SHA512

    1e64938d76a4f23bff8b116a7bbeecd731ebfd00ba1e074b3c06ec15ff3aa62d4edce7bfc80bc782340c46c79765fc18a42dc393c0f7902e061dad5fc9bcff03

  • SSDEEP

    1536:IWsNojlFsYY3yYDeFkkMX9qK4qGElC34raAonrMb+KR0Nc8QsJq39:FsNojvzY3yBkkMXr4q23were0Nc8QsC9

Score
10/10

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.1.206:9988

Signatures

Files

  • 0a54765525a72c42edb0794b3995752213af4c3370b5c8940c855e59678ca87c
    .exe windows x86

    481f47bbb2c9c21e108d65f52b04c448


    Headers

    Imports

    Sections