General
-
Target
c6eeb3e0e3c13e987ce48ddcf1211b20.bin
-
Size
352KB
-
MD5
c6eeb3e0e3c13e987ce48ddcf1211b20
-
SHA1
32317ffa8e786c80d22e2f9f119689d4ac0a75f6
-
SHA256
5546b07ed0e6e7cfe2af9a55c405c2a8cb5183e57e75382a9075537a1fd39410
-
SHA512
82f607037241cd0bf8a22778b69287846a494a66b166e8bf7dbeba9ebaf80afddf70fde6a31f82b9e425f4070727baa4a8fa9e7170786147d4c438ea82d3daaf
-
SSDEEP
6144:eH7ey6f6MsyPU+so4EoqjN9WousfOcAeRJBvMg4LbpoS1:eH7h6SMscU98oq3rfOHeRJBV4ZoS
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
encoder/call4_dword_xor
Signatures
-
Metasploit family
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
c6eeb3e0e3c13e987ce48ddcf1211b20.bin
Headers
Sections