General

  • Target

    NEAS.4fa010cfc2cb4b8e90db2ed63e33e830.exe

  • Size

    72KB

  • MD5

    4fa010cfc2cb4b8e90db2ed63e33e830

  • SHA1

    cfa3ed845779d3f9ef51ca37b8297a89d19a3396

  • SHA256

    547022312e16fecb7f77820007f0a1f01cb8c66bc53d0db64294ab1677393150

  • SHA512

    6c390f881faa82b4a144cc725dae8c5a00985915c4c976cce61e1408084be6d521a66b58f7377a0a689291cf04069c7fc88125eef05dd0d64c860092f60856d1

  • SSDEEP

    1536:IOhxk13+AVNMMYAUiNBJzpg/asJ3QEMb+KR0Nc8QsJq39:fhxk1Oz1CNrp0JHe0Nc8QsC9

Score
10/10

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.1.109:1234

Signatures

  • Metasploit family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.4fa010cfc2cb4b8e90db2ed63e33e830.exe
    .exe windows:4 windows x86

    481f47bbb2c9c21e108d65f52b04c448


    Headers

    Imports

    Sections