metasploit | e774cbb458e50e28c8b731ed8930af837d5bf7149bd382279655ffeca263f85bN

General

Target

e774cbb458e50e28c8b731ed8930af837d5bf7149bd382279655ffeca263f85bN
Size

4KB
MD5

42d170e4fc71feaccbe9984afcc380f0
SHA1

240c5b5fa4cddc97f950035048ff81929629a8d9
SHA256

e774cbb458e50e28c8b731ed8930af837d5bf7149bd382279655ffeca263f85b
SHA512

2524736c58fe8cf0d9904926f8cf90336d46aec870aca5b23334bb6649bc4c4eaa19ea66c2bdb77f302eb0874a27abe107a2f20dfa410cc4aca4581e86d0bdcf
SSDEEP

96:f1Yp+ComTZzltKWJD4p+1BcCJL61MFtjCoZCR4323TGotE:GomjRbxLkMFZZW432jttE

Score

10^/10

metasploit

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_http

C2

http://38.55.233.200:53191/DGvxWpZp/G-xM-5AHeZ_TKNIptAAjigBUCPswQRKsJP_vPEBgkHMXSAlixyViFWd1Z__lHwZcEyVSThyTLWb1HC37eQT58QtYonBUZV2FH7d4gmdlK_w9NjRrk6GVIbPd-TEY2dIPLk

Signatures

Metasploit family
metasploit

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e774cbb458e50e28c8b731ed8930af837d5bf7149bd382279655ffeca263f85bN

Files

e774cbb458e50e28c8b731ed8930af837d5bf7149bd382279655ffeca263f85bN
.exe windows:4 windows x86 arch:x86

f9ade0aa18f660a34a4fa23392e21838

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ExitProcess

Sections

.text
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Extracted

Extracted

Signatures

Files

f9ade0aa18f660a34a4fa23392e21838

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 512B - Virtual size: 40B

.data Size: 3KB - Virtual size: 2KB

.idata Size: 512B - Virtual size: 100B

.text
Size: 512B - Virtual size: 40B

.data
Size: 3KB - Virtual size: 2KB

.idata
Size: 512B - Virtual size: 100B