Overview

overview

10

Static

static

10

6698a50bc1...7N.exe

windows7-x64

10

6698a50bc1...7N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6698a50bc176ee8507dedbe5c4410aa645ab77622a25b5fdfcf909813ba3d3a7N

  • Size

    5KB

  • MD5

    656df828704ef34c7e3665fbc67fede0

  • SHA1

    3625d969401784a94dde4b99f93628b4647f3ac0

  • SHA256

    6698a50bc176ee8507dedbe5c4410aa645ab77622a25b5fdfcf909813ba3d3a7

  • SHA512

    7eca787ef12cb2eb6d01873df3004156c617601719a3f5c6b1ca94f9888fd5b8c566fb5a863fba8d3538be358c8b886e692eb039d1998d8f196b94dde04864e7

  • SSDEEP

    96:Tgf2j/vkULlpxsFH6kXh48VtaNa0FozNt:TgGnfpxcXh4WQq

Score
10/10
metasploit

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_http

C2

http://192.168.142.133:8888/16BB_pKPHogMHw0eav7CigQTkO35kqY4p2XczckdeVF3PKyNlBLOsmriT

Signatures

  • Metasploit family
    metasploit
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 6698a50bc176ee8507dedbe5c4410aa645ab77622a25b5fdfcf909813ba3d3a7N
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections