Analysis
-
max time kernel
120s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system -
submitted
16/01/2024, 11:54
Behavioral task
behavioral1
Sample
5fd54dc24ba5b6970ccc9e11980baddf.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
5fd54dc24ba5b6970ccc9e11980baddf.exe
Resource
win10v2004-20231215-en
General
-
Target
5fd54dc24ba5b6970ccc9e11980baddf.exe
-
Size
72KB
-
MD5
5fd54dc24ba5b6970ccc9e11980baddf
-
SHA1
0827152eb4ad4d7292b52e93f9917c3b42fee40e
-
SHA256
9f979427bdd52ecbf0353410baa9df5d4df4946ed25d3ed1608bd5b02c418ec3
-
SHA512
454cf17245fe0e28ccdfcafbf0b88857470fff236c079560159cce12ef40859c91c3fee155d6481ed9114bd3e2702f54649e5e9c11fd6bf45c373cd219c7bbd3
-
SSDEEP
1536:Iwf/ocKItHL2UDePVVOetLXQMb+KR0Nc8QsJq39:ZYc3R/y2e2e0Nc8QsC9
Malware Config
Extracted
metasploit
windows/shell_reverse_tcp
192.168.0.22:6969
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.