General

  • Target

    mkii.exe

  • Size

    7KB

  • MD5

    2acde47362ca572d56e3c9274e8328eb

  • SHA1

    6bca00676686ae89fbdaf0e79c29a3502bc296b0

  • SHA256

    59d33e81b3bdb4ce0af6328c79a271ea77369267b4faff6c22c1006ba115d1b4

  • SHA512

    4a9613889526f78f3ccc5cb60e9f469d5128e61ea690e1b8e386410d24ce7f9e0cab1dc8ac30de02875f578a7b7345ad3be9abf5f335706704f1878decdb323e

  • SSDEEP

    24:eFGStrJ9u0/6T+ZnZdkBQAVbYfYKZqTeNDMSCvOXpmB:is02+pkBQjQdSD9C2kB

Score
10/10

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

150.158.139.244:4433

Signatures

  • Metasploit family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • mkii.exe
    .exe windows x64

    b4c6fff030479aa3b12625be67bf4914


    Headers

    Imports

    Sections