General
-
Target
notepad++.exe
-
Size
7KB
-
MD5
3d486874b1dc2f025ecb047ab4faca26
-
SHA1
dd4c98c3d617756382901e467732717f4a84f6d5
-
SHA256
d0f43fb4db0fa1398d982c15c6ffdff504faec3456c2e6bbea3b686fe56aa06d
-
SHA512
003aadef751ee6b334a9d424c106b78c49f92e3f35f05fb1285ef657366c1df270bd0a2d4624e987447f54078f06426707d198cee7c425e37e3ad1c1da294385
-
SSDEEP
24:eFGStrJ9u0/6fJuInZdkBQAVKGOxNYKtRqkeNDMSCvOXpmB:is0RckBQv7xGKJSD9C2kB
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
metasploit_stager
C2
47.113.109.27:333
Signatures
-
Metasploit family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
notepad++.exe
b4c6fff030479aa3b12625be67bf4914
Headers
Imports
Sections