metasploit | 4c89b70bd2330ce1fe930d9c6752a2ca23e7463753261036922caf406e101e21 | Triage

Analysis

max time kernel
117s
max time network
121s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
25/12/2023, 23:30 UTC

Sharing

Report Analysis Logs

General

Target

43557ef3470c5b0d8839ccc5d7820e29.exe
Size

130KB
MD5

43557ef3470c5b0d8839ccc5d7820e29
SHA1

e4008310939b46774a612114de27996e2c9066c2
SHA256

4c89b70bd2330ce1fe930d9c6752a2ca23e7463753261036922caf406e101e21
SHA512

11c234d7c93748ba11f4fd4515361fd563ff301d38b0e79ad3cff36855213fd4eecad6989bff66b74a0866f031a3754bd6c1ab4dd793a121cd670039d09b59c5
SSDEEP

3072:+zqTC/VXu6wle0Nc8QsC5erd4WUeej0kZekyyCw:CqGdXu6wE0Nc8Qsm26Wqau

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Signatures

MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
trojan backdoor metasploit

C:\Users\Admin\AppData\Local\Temp\43557ef3470c5b0d8839ccc5d7820e29.exe
"C:\Users\Admin\AppData\Local\Temp\43557ef3470c5b0d8839ccc5d7820e29.exe"
1⤵
PID:1568

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1568-0-0x0000000000400000-0x0000000000425400-memory.dmp

Filesize
149KB

Download
memory/1568-1-0x0000000000400000-0x0000000000425400-memory.dmp

Filesize
149KB

Download