Overview

overview

10

Static

static

10

revshell.exe

windows7-x64

10

revshell.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    revshell.exe

  • Size

    7KB

  • MD5

    69ba1d43e1dec611f4062b610629aea6

  • SHA1

    41c71565baee8d064552aa5c3cfcbd4aed370ec8

  • SHA256

    c78eede4e39a9d86d10ac55b34bb2b304e417efcd80dbd5bbcf97c40f2ea60a5

  • SHA512

    9ac05853e97ec01f60d6f742503605286227a2fee735cae696c102a6d6cec17a69ca3bdd35fb7c62524edd3f212c6f043ece507ee686ce44e05cf626a7fded61

  • SSDEEP

    24:eFGStrJ9u0/6slnZdkBQAVROx+4YKZqjeNDMSCvOXpmB:is0JlkBQDx+4YNSD9C2kB

Score
10/10
metasploit

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

192.168.45.215:4444

Signatures

  • Metasploit family
    metasploit
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • revshell.exe
    .exe windows x64

    b4c6fff030479aa3b12625be67bf4914


    Headers

    Imports

    Sections