General

  • Target

    reverse.exe

  • Size

    7KB

  • MD5

    90e832e57160a5b183ab2b6d5fda23da

  • SHA1

    908b9e1eaee9c88c477668130d1b865a266d537a

  • SHA256

    9faea2f5001c02cc204085851174235198ff50e91daaecc8d1976d363d3b1f2b

  • SHA512

    af8e15801f20a215139f21daf2451b7ec074abd6ed4e10606f493bed280392e1ad93d2a0dbef80cbe511f727f5acd58ddb9b2e7e35a1ab70dcb639d36cf73f8f

  • SSDEEP

    24:eFGStrJ9u0/6OlwnnZdkBQAVoaOx+JKZq/GeNDMSCvOXpmB:is0hwDkBQVXx+JtGSD9C2kB

Score
10/10

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

10.0.2.15:4444

Signatures

  • Metasploit family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • reverse.exe
    .exe windows:4 windows x64

    b4c6fff030479aa3b12625be67bf4914


    Headers

    Imports

    Sections