metasploit | 87b95720e156e3c384c082fab8196835e7bf4cfedfdc97de11774d533c6b1edd

Analysis

max time kernel
170s
max time network
191s
platform
windows10-2004_x64
resource
win10v2004-20230915-en
resource tags

arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
submitted
14-10-2023 14:00

Target

87b95720e156e3c384c082fab8196835e7bf4cfedfdc97de11774d533c6b1edd.exe
Size

7KB
MD5

7803f57a7d07d38258e0ab398f6d7f5e
SHA1

9e1000150f29fbdea5016534b592999f3527a11e
SHA256

87b95720e156e3c384c082fab8196835e7bf4cfedfdc97de11774d533c6b1edd
SHA512

b66e072b956d7f94d4484218540e2e2b5bfd6c0c6e3625dcff9903200f3297cb31dd1bea469d1f26233db1c2e49988375033951b83781a8df39b0fe59601c386
SSDEEP

96:H1oGbvJqFjc/WIVOi8OVQ0Y0Qb2BkQ80o:pJM8fhC0m2Sv

Score

10^/10

Family

metasploit

Version

windows/reverse_tcp

192.168.52.129:7865

MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
trojan backdoor metasploit

C:\Users\Admin\AppData\Local\Temp\87b95720e156e3c384c082fab8196835e7bf4cfedfdc97de11774d533c6b1edd.exe
"C:\Users\Admin\AppData\Local\Temp\87b95720e156e3c384c082fab8196835e7bf4cfedfdc97de11774d533c6b1edd.exe"
1⤵
PID:4296

memory/4296-1-0x0000000074820000-0x0000000074FD0000-memory.dmp

Filesize
7.7MB

Download
memory/4296-0-0x0000000000170000-0x0000000000178000-memory.dmp

Filesize
32KB

Download
memory/4296-3-0x0000000002550000-0x0000000004550000-memory.dmp

Filesize
32.0MB

Download
memory/4296-4-0x0000000074820000-0x0000000074FD0000-memory.dmp

Filesize
7.7MB

Download
memory/4296-5-0x0000000002550000-0x0000000004550000-memory.dmp

Filesize
32.0MB

Download