General
-
Target
2144aa68c7b2a6e3511e482d6759895210cf60c67f14b9485a0236af925d8233
-
Size
120KB
-
Sample
220127-z8afdaagcm
-
MD5
22cbe2b0f1ef3f2b18b4c5aed6d7bb79
-
SHA1
9063797b6ebe0cb1c83cde2c15d9c69736d53c71
-
SHA256
2144aa68c7b2a6e3511e482d6759895210cf60c67f14b9485a0236af925d8233
-
SHA512
b96d33189d73f228936173293c68be3fa2545a4e36db0712d999a664bbc15c5b252b1ba1d9beb591f01c46188bdbce3845b09916ff61227e04c3c9c9c494c612
Malware Config
Extracted
metasploit
encoder/shikata_ga_nai
Targets
-
-
Target
2144aa68c7b2a6e3511e482d6759895210cf60c67f14b9485a0236af925d8233
-
Size
120KB
-
MD5
22cbe2b0f1ef3f2b18b4c5aed6d7bb79
-
SHA1
9063797b6ebe0cb1c83cde2c15d9c69736d53c71
-
SHA256
2144aa68c7b2a6e3511e482d6759895210cf60c67f14b9485a0236af925d8233
-
SHA512
b96d33189d73f228936173293c68be3fa2545a4e36db0712d999a664bbc15c5b252b1ba1d9beb591f01c46188bdbce3845b09916ff61227e04c3c9c9c494c612
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Executes dropped EXE
-
Deletes itself
-
Loads dropped DLL
-