General

  • Target

    ec5ec01aca44fde09b7f16a260acc75ff27662675e2c5ce078a52279cc177156N

  • Size

    72KB

  • MD5

    62e63b10b88a7b0fdd579dcb74c83a90

  • SHA1

    703e9283b834f6040dcef62c65c6177afeaaa729

  • SHA256

    ec5ec01aca44fde09b7f16a260acc75ff27662675e2c5ce078a52279cc177156

  • SHA512

    421b91148ef9c6f56c9dc1f2e831d85d1eaa0319283b1e49203747ae8e6e41599e5a75b8de7a096fca276aa54c1e52c3812e41a4bbf9f0606b85d87388537ebf

  • SSDEEP

    1536:IzJJfITG575DQu+SbQCCDjBSg/r7yaMb+KR0Nc8QsJq39:8JfITG5xQuVFCDjBN/rWae0Nc8QsC9

Score
10/10

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.253.128:8080

Signatures

  • Metasploit family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ec5ec01aca44fde09b7f16a260acc75ff27662675e2c5ce078a52279cc177156N
    .exe windows:4 windows x86 arch:x86

    481f47bbb2c9c21e108d65f52b04c448


    Headers

    Imports

    Sections