Overview

overview

10

Static

static

10

8899.exe

windows7-x64

10

8899.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    8899.exe

  • Size

    7KB

  • MD5

    6395d9ec5f168dc2b952e75a1347347c

  • SHA1

    b091d290a2617d74bdbaa5b668affb4ec222fb90

  • SHA256

    46c4a05548dae6ce10a9eb5a8896b57e839f8abe5cd257bbce8d113a1799e167

  • SHA512

    ac4e328b95d9eefafb90d357e93801c07d51ed2cf678da3f45a4bd2521265f8fe91ca2fcc23c844411f45175f68db0cebdb8f98806433fb8901952b4d7965027

  • SSDEEP

    24:eFGStrJ9u0/6SSRnZdkBQAVKokyKPq4ayeNDMSCvOXpmB:is0HKkBQvLygbSD9C2kB

Score
10/10
metasploit

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

8.138.86.191:8899

Signatures

  • Metasploit family
    metasploit
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 8899.exe
    .exe windows:4 windows x64 arch:x64

    b4c6fff030479aa3b12625be67bf4914


    Headers

    Imports

    Sections