Overview

overview

7

Static

static

3

EzExploit ....3.exe

windows10-2004-x64

7

EzExploit ...md.exe

windows10-2004-x64

7

EzExploit ...en.jar

windows10-2004-x64

7

EzExploit ...it.jar

windows10-2004-x64

7

EzExploit ...rt.jar

windows10-2004-x64

7

EzExploit ...nd.jar

windows10-2004-x64

7

EzExploit ...st.jar

windows10-2004-x64

7

EzExploit ...nd.jar

windows10-2004-x64

7

EzExploit ...er.jar

windows10-2004-x64

7

EzExploit ...ml.jar

windows10-2004-x64

7

EzExploit ...un.bat

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    EzExploit B2.3.zip

  • Size

    18.5MB

  • MD5

    7e31558868baf38e5ae002954d0bb216

  • SHA1

    5f920aee5f1e9a6060d30d3973f113ab6ef9782b

  • SHA256

    00d1db0b29cae03c77c3d6d836f464f9210e21f20fe0b499e0f113d8300cbef9

  • SHA512

    5cd17dfda4b52cf65775be13f7cbfc3377ee439190b92fe81b05247a9caac32f4df49fd7be432367755a271cb96bb5be0358b752e0e9443ec019846a743f734f

  • SSDEEP

    393216:mgC7HiA5pCV7Q+E/bowKXSaQ2tgsdEr12Hinvh1M:mgCTiA5K7Q+ETEE+gNCI51M

Score
3/10
pyinstaller

Malware Config

Signatures

  • Detects Pyinstaller 2 IoCs
    pyinstaller
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • EzExploit B2.3.zip
    .zip
  • EzExploit B2.3/EzExploit V2.3.exe
    .exe windows:5 windows x64 arch:x64

    ba5546933531fafa869b1f86a4e2a959


    Headers

    Imports

    Sections

  • EzExploit V2.3.pyc
  • EzExploit B2.3/cmd.exe
    .exe windows:5 windows x64 arch:x64

    ba5546933531fafa869b1f86a4e2a959


    Headers

    Imports

    Sections

  • cmd.pyc
  • EzExploit B2.3/config.yml
  • EzExploit B2.3/methods/EzExploitSpoken.jar
    .jar
  • EzExploit B2.3/methods/ProxyBridge.jar
    .zip
  • bungee.yml
  • jutting/BungeeHack.class
  • jutting/commands/ConnectCommand.class
  • jutting/commands/IPCommand.class
  • jutting/commands/InfoCommand.class
  • jutting/commands/NameCommand.class
  • jutting/commands/UUIDCommand.class
  • jutting/listener/LoginListener.class
  • jutting/listener/PreLoginListener.class
  • jutting/listener/ServerConnectListener.class
  • org/json/simple/ItemList.class
  • org/json/simple/JSONArray.class
  • org/json/simple/JSONAware.class
  • org/json/simple/JSONObject.class
  • org/json/simple/JSONStreamAware.class
  • org/json/simple/JSONValue.class
  • org/json/simple/parser/ContainerFactory.class
  • org/json/simple/parser/ContentHandler.class
  • org/json/simple/parser/JSONParser.class
  • org/json/simple/parser/ParseException.class
  • org/json/simple/parser/Yylex.class
  • org/json/simple/parser/Yytoken.class
  • EzExploit B2.3/methods/ezexploit.jar
    .jar
  • EzExploit B2.3/modules.yml
  • EzExploit B2.3/modules/cmd_alert.jar
    .jar
  • EzExploit B2.3/modules/cmd_find.jar
    .jar
  • EzExploit B2.3/modules/cmd_list.jar
    .jar
  • EzExploit B2.3/modules/cmd_send.jar
    .jar
  • EzExploit B2.3/modules/cmd_server.jar
    .jar
  • EzExploit B2.3/modules/reconnect_yaml.jar
    .jar
  • EzExploit B2.3/proxy.log.0
  • EzExploit B2.3/run.bat