General

  • Target

    d8c28440ab246e57034aab5a606a8deb29299f0eec3c4bb8c064116b8436b387

  • Size

    7KB

  • MD5

    42cac5fa03a4cacddc8e4e6ebcb78dbb

  • SHA1

    9013f5e3f261306f1f0921ba81b98437f5a4354c

  • SHA256

    d8c28440ab246e57034aab5a606a8deb29299f0eec3c4bb8c064116b8436b387

  • SHA512

    31ab577baf7c18fe36e94a8d7a833ab9b298176ee5759e821bafd89587760050bda31a866e58edba8b9ca002c473d19d4d52f3845e28007f20295177d278b473

  • SSDEEP

    24:eFGStrJ9u0/6SbnZdkBQAVD6WY+rKZqfIeNDMSCvOXpmB:is0rHkBQyi+rqSD9C2kB

Score
10/10

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

192.168.56.144:1234

Signatures

  • Metasploit family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d8c28440ab246e57034aab5a606a8deb29299f0eec3c4bb8c064116b8436b387
    .exe windows:4 windows x64 arch:x64

    b4c6fff030479aa3b12625be67bf4914


    Headers

    Imports

    Sections