General
-
Target
1fd74e431f84ab00ad62620141b53491c450b3d6c71dc0fe8ff0dbc47ea304a3
-
Size
857KB
-
Sample
220127-1dqdsabdh3
-
MD5
10e2d3cb3e7b746b352f280e0ac1d2d4
-
SHA1
855c4ba7467dfc75a38013fb7fed7da287fe5170
-
SHA256
1fd74e431f84ab00ad62620141b53491c450b3d6c71dc0fe8ff0dbc47ea304a3
-
SHA512
e65f82790a51e009d5dc809d5e2e4d112eb257aa2de2dea5e073f38fb9113adbec48f716618fe01f676295a4cdcea1d8fe0bd17f3a9339e6c2039fe953f891d1
Static task
static1
Behavioral task
behavioral1
Sample
1fd74e431f84ab00ad62620141b53491c450b3d6c71dc0fe8ff0dbc47ea304a3.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
1fd74e431f84ab00ad62620141b53491c450b3d6c71dc0fe8ff0dbc47ea304a3.exe
Resource
win10-en-20211208
Malware Config
Extracted
metasploit
encoder/call4_dword_xor
Targets
-
-
Target
1fd74e431f84ab00ad62620141b53491c450b3d6c71dc0fe8ff0dbc47ea304a3
-
Size
857KB
-
MD5
10e2d3cb3e7b746b352f280e0ac1d2d4
-
SHA1
855c4ba7467dfc75a38013fb7fed7da287fe5170
-
SHA256
1fd74e431f84ab00ad62620141b53491c450b3d6c71dc0fe8ff0dbc47ea304a3
-
SHA512
e65f82790a51e009d5dc809d5e2e4d112eb257aa2de2dea5e073f38fb9113adbec48f716618fe01f676295a4cdcea1d8fe0bd17f3a9339e6c2039fe953f891d1
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Suspicious use of SetThreadContext
-