General
-
Target
3fa98e5083ee3e162e70b81eabf2275a50a2e27cb11a7b14f18be951a8be3c12
-
Size
98KB
-
Sample
220630-3jmaeseba8
-
MD5
9c7f5c15b94e9e1ad1301ffe3e69424f
-
SHA1
b53adf7466534f9c0ec06f3ee9cf16f629b665ca
-
SHA256
3fa98e5083ee3e162e70b81eabf2275a50a2e27cb11a7b14f18be951a8be3c12
-
SHA512
456ae297445a7b0c92a3f2fd913c335e1d4085d9e54259ac1f27db18994669d6202cbb02fa2944bd58dd0e623a317c8a70801d7f2e3c82d4feb509a15025206a
Static task
static1
Behavioral task
behavioral1
Sample
3fa98e5083ee3e162e70b81eabf2275a50a2e27cb11a7b14f18be951a8be3c12.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
3fa98e5083ee3e162e70b81eabf2275a50a2e27cb11a7b14f18be951a8be3c12.exe
Resource
win10v2004-20220414-en
Malware Config
Extracted
metasploit
encoder/call4_dword_xor
Targets
-
-
Target
3fa98e5083ee3e162e70b81eabf2275a50a2e27cb11a7b14f18be951a8be3c12
-
Size
98KB
-
MD5
9c7f5c15b94e9e1ad1301ffe3e69424f
-
SHA1
b53adf7466534f9c0ec06f3ee9cf16f629b665ca
-
SHA256
3fa98e5083ee3e162e70b81eabf2275a50a2e27cb11a7b14f18be951a8be3c12
-
SHA512
456ae297445a7b0c92a3f2fd913c335e1d4085d9e54259ac1f27db18994669d6202cbb02fa2944bd58dd0e623a317c8a70801d7f2e3c82d4feb509a15025206a
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Suspicious use of SetThreadContext
-