General

  • Target

    dev.exe

  • Size

    72KB

  • MD5

    875812455ea4629ca744e220db311383

  • SHA1

    eb3612e35ae6665dca1e6083ce0f6093fce51f3c

  • SHA256

    3cce91853a0a228b8aa580ef14e550023503e43fe45e48170e0f517f224df465

  • SHA512

    940d3a9a9314124c6bdf795c53054c7e9c900db568272bca8c21de43ff1cc28d8758316f5003b0e3955cfe4772ac57fdc1045c24a32626aaa35e875372210d9a

  • SSDEEP

    1536:IJ1LXoqz3EJ412De5W9vki3RFowQvtFw50FkMb+KR0Nc8QsJq39:SpXoK3EJS2De5W9MocxVK0Fke0Nc8Qss

Score
10/10

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

34.89.129.194:8091

Signatures

  • Metasploit family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • dev.exe
    .exe windows:4 windows x86

    481f47bbb2c9c21e108d65f52b04c448


    Headers

    Imports

    Sections