metasploit | 6c5e55644196abaef0ce2ed24276573919d2cc52a5338afdab403dadd496fbf9 | Triage

Submit
Reports

Overview

overview

Static

static

6c5e556441...f9.exe

windows7-x64

6c5e556441...f9.exe

windows10-2004-x64

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6c5e55644196abaef0ce2ed24276573919d2cc52a5338afdab403dadd496fbf9.exe

Resource

win7-20220812-en

metasploit backdoor trojan

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

6c5e55644196abaef0ce2ed24276573919d2cc52a5338afdab403dadd496fbf9.exe

Resource

win10v2004-20220901-en

metasploit backdoor trojan

windows10-2004-x64

1 signatures

150 seconds

General

Target

6c5e55644196abaef0ce2ed24276573919d2cc52a5338afdab403dadd496fbf9
Size

107KB
MD5

0350e5ffec6a60c3964bfc5b58315b33
SHA1

a1cf5b22826923c5d14e3ff0e0e11a897684f7f6
SHA256

6c5e55644196abaef0ce2ed24276573919d2cc52a5338afdab403dadd496fbf9
SHA512

a06f2e57efe750438ae82d03b14c4d0246ab585c6ef75e831f61fca119d270a99640acce1467ada47bf17e61e31b036c8daed661d4dd20c06c5e6bd961f9fd5a
SSDEEP

1536:wvIdKR146dKVKFeLWzmxLtMb+KR0Nc8QsGq3fQiOgaHq3:ZdKR1d5a0cLte0Nc8Qszoi7ao

Score

10^/10

metasploit

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.1.85:900

Signatures

Metasploit family
metasploit

Files

6c5e55644196abaef0ce2ed24276573919d2cc52a5338afdab403dadd496fbf9
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy