Overview

overview

10

Static

static

10

payload.exe

windows7-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    payload.exe

  • Size

    72KB

  • MD5

    884f3cec336aa69ec332e49f1c9a4d43

  • SHA1

    2b4965982db2c49804124ecf7e7295a469634fd7

  • SHA256

    c67a2e9a159430b179498b0f381be089e26f1e19ade0d09ffa605f34fa2ba734

  • SHA512

    c9fc555614c32e88712c9681c6b532fdf9738a28d5ebe9aa70a74eab5a84ce1df2cf69dbd9667e52ce02117738371e05625e8f89bef787bc82a1f165d3fe5556

  • SSDEEP

    1536:IlgNWLMq5he2RYSU13/CJMwU4+Mb+KR0Nc8QsJq39:YVnZ7u3/Cq4+e0Nc8QsC9

Score
10/10
metasploit

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

18.230.84.69:19244

Signatures

  • Metasploit family
    metasploit
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • payload.exe
    .exe windows:4 windows x86 arch:x86

    481f47bbb2c9c21e108d65f52b04c448


    Headers

    Imports

    Sections