Overview

overview

10

Static

static

10

dbab0a8bf0...04.dll

windows7-x64

1

dbab0a8bf0...04.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    dbab0a8bf0d398a1ebbd8270cf6782e732a0e574f4139afb1deb577af918af04

  • Size

    5KB

  • MD5

    d4c36c23c4496b54e32803c6097cf2d6

  • SHA1

    77c47af70e561031dcc97d091347c098962f30f2

  • SHA256

    dbab0a8bf0d398a1ebbd8270cf6782e732a0e574f4139afb1deb577af918af04

  • SHA512

    08ca0e841c05712f11512eb8cad82f3faa7de07defb49c1ee27aeee73cd03752548c0849f9696463de5da5c111cfc242e9b3c9703708399ad205267e99a0287e

  • SSDEEP

    96:CZAXs8ZnvIPBUaUHRZiT9lDH9A+3xbo4OXk:5nv0eaUHa3DmUbo4p

Score
10/10
metasploit

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://192.168.10.174:6666/tTJJ

Attributes
  • headers User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; BOIE9;ENUSMSCOM)

Signatures

  • Metasploit family
    metasploit
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • dbab0a8bf0d398a1ebbd8270cf6782e732a0e574f4139afb1deb577af918af04
    .dll windows:4 windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections