Overview

overview

10

Static

static

10

35.79.226.190-32.ps1

windows7-x64

8

35.79.226.190-32.ps1

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    35.79.226.190-32.ps1

  • Size

    3KB

  • MD5

    c810134397dbf2c5aefd3b31464cbc7a

  • SHA1

    2b02b4c6f77e321ec0b467ef9abc6ac51ceee17d

  • SHA256

    5b7749150512cfe264aa3538dcbbda26a2e186bffed1cf638ddce050729f69ab

  • SHA512

    58ee88a4435835fe0e7eadc129c30855b2a8964b2f56c0fd00309aecb9f40d9a23fa40cb0af31a6014ece5fb652b9fedb3c446fa1da213facb6d8ee4d2c70551

Score
10/10
metasploit

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://35.79.226.190:8080/wi1K

Attributes
  • headers User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; Win64; x64; Trident/6.0; Avant Browser)

Signatures

Files

  • 35.79.226.190-32.ps1
    .ps1