Overview

overview

10

Static

static

10

SecuriteIn...31.exe

windows7-x64

10

SecuriteIn...31.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SecuriteInfo.com.Trojan.PackedNET.2209.3260.19031.exe

  • Size

    367KB

  • MD5

    0ff7be5ea5f1ebbc7d936e26865b47d5

  • SHA1

    971651329f9702f49b7b180376e7541d4bb58697

  • SHA256

    2965834ef9a49d06f3dee7657e642fee88fd24a9aae7c612087aa851b5a3949c

  • SHA512

    e09552616d0e830ac70255645deb625d5b9780124069c56d7457e76d2498796f8a0681d83409d3a7fdfc34b5d25472f394ca8f3f8c95fc7ca732aac2e3dd2a2b

  • SSDEEP

    6144:C3rx7YDzTKyYWx4mGv0bYzk95tax6cyS/glgBuRI/uU0JPmVn7OCkpkdt4:+dqvKIfGv0Mk5taXd/o6ui2wtJkSH4

Score
10/10
metasploit

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_http

C2

http://10.30.5.18:443/bF-9vFVEfZj6K_sqnIb4qwyeW3TSVEsP3Rt0oyRFteYLHOCyaf5_iVoLDbKGuupIaFCahtb7rv2X-_iXCWgVioDqrcw_vST0wsWO9IehOfIAcs1pgSzdJS1OEilhzj0vO78Fq5e7iojhnliBsv_krDH2_F8mXDisqKHJDt6Vs3mo8_tUfncBA5gG08Fe-z7NwLVNoL

Signatures

  • Metasploit family
    metasploit
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • SecuriteInfo.com.Trojan.PackedNET.2209.3260.19031.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections