General
-
Target
reverse_vnc_inject.exe
-
Size
7KB
-
MD5
c347d026b634e76dd973d08bc206db88
-
SHA1
1cd58535ca6ea5f7af29260c9704346aca2e9a04
-
SHA256
f6d79abd761badf4cfd1149ee1eeab8b58f028c60072c71e23d689b1cf41646d
-
SHA512
1c6095ca6a3f2d46b443d2a1db9b95af44060e9455469b8f84ab728e10bb7a1fe12c6e733820ee7c4cbe8d0dbf17a0944bbb57e2a1af55593afd4f28bd5f0c66
-
SSDEEP
24:eFGStrJ9u0/6yQnZdkBQAVeaYfwKZqsqzeNDMSCvOXpmB:is07EkBQztoPSD9C2kB
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
metasploit_stager
C2
10.0.0.32:4444
Signatures
-
Metasploit family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
reverse_vnc_inject.exe
b4c6fff030479aa3b12625be67bf4914
Headers
Imports
Sections