General

  • Target

    451bfc53392d21fc78c867ceff64d6e2

  • Size

    72KB

  • MD5

    451bfc53392d21fc78c867ceff64d6e2

  • SHA1

    9131bdcff69d088c4fa212799bc8aa9c8c65af39

  • SHA256

    380d7aac600e1087468f79505f4007250989a5503263b8882fa2e00a8ac23090

  • SHA512

    7c3b74e7ce390a1809b96b9a20b32b392bccf8ad0bb1ce2719a1c5b68242815435da1f2d8e701ffe6060eca73f71d74268c457d351f931b974636c88030632c7

  • SSDEEP

    1536:IxkYzZOaGFvpJo7miilge/C+XkMb+KR0Nc8QsJq39:g1dCJWmiiCLPe0Nc8QsC9

Score
10/10

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.170.128:4444

Signatures

  • Metasploit family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 451bfc53392d21fc78c867ceff64d6e2
    .exe windows:4 windows x86 arch:x86

    481f47bbb2c9c21e108d65f52b04c448


    Headers

    Imports

    Sections