metasploit | 07856c09f5c41602e7bf01e1ca62505eb543678a37edf66a1295d652d9ea6448 | Triage

Submit
Reports

Overview

overview

Static

static

07856c09f5...48.dll

windows7-x64

07856c09f5...48.dll

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

07856c09f5c41602e7bf01e1ca62505eb543678a37edf66a1295d652d9ea6448.dll

Resource

win7-20220812-en

metasploit backdoor trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

07856c09f5c41602e7bf01e1ca62505eb543678a37edf66a1295d652d9ea6448.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

07856c09f5c41602e7bf01e1ca62505eb543678a37edf66a1295d652d9ea6448
Size

14KB
MD5

ae78446e4d81924811436d057a82d8e0
SHA1

84a8ebfb7ba542e778797c6ac8fed4d986a2fcc2
SHA256

07856c09f5c41602e7bf01e1ca62505eb543678a37edf66a1295d652d9ea6448
SHA512

011b894bf156649752c8b7927816a2349b97a3243ee47a362f01f6927a6527c85e7a7fa2b6f45abf4af99db77a930718c9f0501dadc247edf7df5605940c3dc7
SSDEEP

96:WmHGzq6tjW33XlfrEBoQMAhfcoM6fB4iqwggWYhsJNcy:sFtEfrhQcJ6p4ihH5sJNc

Score

10^/10

metasploit

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

78.59.206.156:4444

Signatures

Metasploit family
metasploit

Files

07856c09f5c41602e7bf01e1ca62505eb543678a37edf66a1295d652d9ea6448
.dll windows x86

0b7b4c8fba119fc8ba64403e1ce2bcf1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CloseHandle
CreateMutexA
CreateProcessA
GetLastError
GetModuleHandleA
GetProcAddress
GetThreadContext
ResumeThread
SetThreadContext
VirtualAllocEx
WriteProcessMemory

msvcrt

__dllonexit
_errno
fflush
free
malloc
memset

Exports

Exports

DllMain@12

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 68B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 212B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 240B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy