metasploit | 6b9fc6a0b55fea7e2aba2c8eb5dc8b4c9ed35b2783a194358fe968d61f1f42b1

Analysis

max time kernel
122s
max time network
125s
platform
windows7_x64
resource
win7-20231020-en
resource tags

arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
submitted
19/11/2023, 16:57

Target

6b9fc6a0b55fea7e2aba2c8eb5dc8b4c9ed35b2783a194358fe968d61f1f42b1.exe
Size

114KB
MD5

ede5fcfbc10b95751840aadff68ad1f7
SHA1

1db09f8ab9500ad53e2fca0829845ccb5ff8b121
SHA256

6b9fc6a0b55fea7e2aba2c8eb5dc8b4c9ed35b2783a194358fe968d61f1f42b1
SHA512

94dc82aec96cfed659e1b6744560c0098e39d15bf787cecc20c881c7bc04a211b07ca4a08e5418e18b5cfc2b5f12740a64b98e4c1b594f2485083b2ba653610e
SSDEEP

1536:Oi9k0mt3NI1zGIhZBwZN0cBmHch29WRIYkHngugNq5i+jDu6nRif:Je0mFNINnzquUFf

Score

10^/10

Family

metasploit

Version

encoder/shikata_ga_nai

MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
trojan backdoor metasploit

C:\Users\Admin\AppData\Local\Temp\6b9fc6a0b55fea7e2aba2c8eb5dc8b4c9ed35b2783a194358fe968d61f1f42b1.exe
"C:\Users\Admin\AppData\Local\Temp\6b9fc6a0b55fea7e2aba2c8eb5dc8b4c9ed35b2783a194358fe968d61f1f42b1.exe"
1⤵
PID:1532

memory/1532-1-0x000000013F050000-0x000000013F071000-memory.dmp

Filesize
132KB

Download
memory/1532-2-0x0000000000020000-0x0000000000021000-memory.dmp

Filesize
4KB

Download