General

  • Target

    932-262-0x0000000140000000-0x0000000140004278-memory.dmp

  • Size

    16KB

  • MD5

    703d81fb6dd2236c29f3dc6452103e5f

  • SHA1

    f67d63a7089ed27296d775108bb9fed4a5ce9cf1

  • SHA256

    8396e94a1dae53dbe233fd2652825a671b7088c1c5c5fa385138901b49e90973

  • SHA512

    53d7e00399ae14e202d479ab21637da4be38a6361d07236712ccd60c6ac27a30574cb733667dffa49107dd922998ecbb1a6e44739d605c825e57c2bec1769c10

  • SSDEEP

    24:eFGStrJ9u0/6ZCnZd0BQAV2HaYaKZq6eNDMSCvOXpmB9:is0ca0BQ3taASD9C2kB9

Score
10/10

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

91.92.247.21:8405

Signatures

  • Metasploit family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 932-262-0x0000000140000000-0x0000000140004278-memory.dmp
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections