Overview

overview

10

Static

static

10

9ddcbfd80d...f3.exe

windows7-x64

10

9ddcbfd80d...f3.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    9ddcbfd80dad6316176797a036fb164ff11d8e8fa50a7cebe6b3180adbf82bf3

  • Size

    7KB

  • MD5

    c11876e2ed238da218b6dc1c0cd985cd

  • SHA1

    e2ad693ec9754d463c1cf85a74ae017f18ae90bd

  • SHA256

    9ddcbfd80dad6316176797a036fb164ff11d8e8fa50a7cebe6b3180adbf82bf3

  • SHA512

    cfcdec432c996efbf2e02c9078295d28e494d37a6cc18c5227d34bb5b627ceadddc68b6dcb57c3351ded7f87dd5331253601dab1bcb8659f17d427d0cd65c10a

  • SSDEEP

    24:eFGStrJ9u0/6VAnZdkBQAVvybgipOBDDLTVNOxpPMSpmB:is0c0kBQSqOxhksdB

Score
10/10
metasploit

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

metasploit_stager

C2

192.168.56.105:4444

Signatures

  • Metasploit family
    metasploit
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 9ddcbfd80dad6316176797a036fb164ff11d8e8fa50a7cebe6b3180adbf82bf3
    .exe windows:4 windows x64 arch:x64

    b4c6fff030479aa3b12625be67bf4914


    Headers

    Imports

    Sections