Behavioral task
behavioral1
Sample
payload.ps1
Resource
win7-20230712-en
windows7-x64
6 signatures
150 seconds
Behavioral task
behavioral2
Sample
payload.ps1
Resource
win10v2004-20230703-en
windows10-2004-x64
6 signatures
150 seconds
General
-
Target
payload.ps1
-
Size
3KB
-
MD5
a8c07cd267437f10a9df21e009b96bb9
-
SHA1
5a7b260b162390234f7a2d1973c2e00ca7cebc71
-
SHA256
78223bf0a9ad3bbe1de87c87c1a79ba38c96cd5b18da404430a8aa67309bad49
-
SHA512
6ca0868edd01ec1b993f329e7e5ecdaa2070fa2c0e936539d48d02c971c5314b817ea1efd96695507a1f04538af6003e4b9337a06db37dd3630645fe6bf146db
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
windows/download_exec
C2
http://101.35.235.73:8888/fqR3
Attributes
- headers User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0)
Signatures
-
Metasploit family
Files
-
payload.ps1.ps1