General
-
Target
rev_44.exe
-
Size
7KB
-
MD5
a8dfcb0a7db576ab6340b84896537280
-
SHA1
46d5e97ec98fdf530dcd4b540e599b431f814d44
-
SHA256
49bea3f78e22f716b15bdc8e0a4e4c52bc6c945d226b72800f31e3e5837355f4
-
SHA512
9015cc307c00fa7ac418aa4b63a589f63147e4baecdec68b9d0bb4618aedb99b434d7b5318ed3f0aea277db5424524a383dca6c88639d4b4cfe7e69294367440
-
SSDEEP
24:eFGStrJ9u0/6L2onZd0BQAVpOxh7wKPq/eNDMSeXixpmB:is0L80BQrxhMXSD9eS2B
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
metasploit_stager
C2
192.168.154.130:4444
Signatures
-
Metasploit family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
rev_44.exe
b4c6fff030479aa3b12625be67bf4914
Headers
Imports
Sections