General
-
Target
b2c62645565005fc807d46ec74a6ae359275d3ab2d15aee3f5aeb83bea3209c2
-
Size
7.7MB
-
Sample
211106-c7lexsaedr
-
MD5
3e5b26420c6d38ecbfbe2f0461a34b15
-
SHA1
5d60efdd713a52a35cac582bbe4804c554877bf0
-
SHA256
b2c62645565005fc807d46ec74a6ae359275d3ab2d15aee3f5aeb83bea3209c2
-
SHA512
c1a9ce88d521b047daacfc1b94ad1d3f00e099652e25a096017a9c7531f067fa78515bbf899e15d8aa2ae7e298b1452f700886d8f39ae4e870829c22f0e41698
Static task
static1
Behavioral task
behavioral1
Sample
b2c62645565005fc807d46ec74a6ae359275d3ab2d15aee3f5aeb83bea3209c2.exe
Resource
win7-en-20211014
Behavioral task
behavioral2
Sample
b2c62645565005fc807d46ec74a6ae359275d3ab2d15aee3f5aeb83bea3209c2.exe
Resource
win10-en-20211104
Malware Config
Extracted
metasploit
windows/reverse_tcp
47.94.236.117:6688
Targets
-
-
Target
b2c62645565005fc807d46ec74a6ae359275d3ab2d15aee3f5aeb83bea3209c2
-
Size
7.7MB
-
MD5
3e5b26420c6d38ecbfbe2f0461a34b15
-
SHA1
5d60efdd713a52a35cac582bbe4804c554877bf0
-
SHA256
b2c62645565005fc807d46ec74a6ae359275d3ab2d15aee3f5aeb83bea3209c2
-
SHA512
c1a9ce88d521b047daacfc1b94ad1d3f00e099652e25a096017a9c7531f067fa78515bbf899e15d8aa2ae7e298b1452f700886d8f39ae4e870829c22f0e41698
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Loads dropped DLL
-