General
-
Target
6f6709da08a4ec3aa1e5f0808126b2238e7b2d8a31fb0e98077fee34f94a3829
-
Size
217KB
-
Sample
221129-jwwj3sag52
-
MD5
916b741a128d37745ae26ce14e2eae36
-
SHA1
a9ad1b71ca5664b5216ca4b96db045d10ad4c6c1
-
SHA256
6f6709da08a4ec3aa1e5f0808126b2238e7b2d8a31fb0e98077fee34f94a3829
-
SHA512
67750f6b5bac3f004fd4e5d90d82ba79739249f858cda1f27554eb7e3410072518376286f6cebd21adbb7ebff8de2e01c4ade676601d13c3435d413ced7c5df6
-
SSDEEP
3072:9vI4vTBMphzKFHaDjlSYNjPJaJeUaybid5GKb/x+EkDIREhCFeRdvwwI9o:9Q4bu2HaDjPjxaJeU4d5Db/UEkDOFKm
Static task
static1
Behavioral task
behavioral1
Sample
6f6709da08a4ec3aa1e5f0808126b2238e7b2d8a31fb0e98077fee34f94a3829.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
6f6709da08a4ec3aa1e5f0808126b2238e7b2d8a31fb0e98077fee34f94a3829.exe
Resource
win10v2004-20221111-en
Malware Config
Extracted
metasploit
encoder/shikata_ga_nai
Extracted
metasploit
windows/download_exec
http://192.168.111.162:4444/LImZ
Targets
-
-
Target
6f6709da08a4ec3aa1e5f0808126b2238e7b2d8a31fb0e98077fee34f94a3829
-
Size
217KB
-
MD5
916b741a128d37745ae26ce14e2eae36
-
SHA1
a9ad1b71ca5664b5216ca4b96db045d10ad4c6c1
-
SHA256
6f6709da08a4ec3aa1e5f0808126b2238e7b2d8a31fb0e98077fee34f94a3829
-
SHA512
67750f6b5bac3f004fd4e5d90d82ba79739249f858cda1f27554eb7e3410072518376286f6cebd21adbb7ebff8de2e01c4ade676601d13c3435d413ced7c5df6
-
SSDEEP
3072:9vI4vTBMphzKFHaDjlSYNjPJaJeUaybid5GKb/x+EkDIREhCFeRdvwwI9o:9Q4bu2HaDjPjxaJeU4d5Db/UEkDOFKm
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-