Analysis
-
max time kernel
93s -
max time network
160s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system -
submitted
22/01/2024, 01:58
Behavioral task
behavioral1
Sample
6e6ad2ff991a55f5a6843916d2df5bd1.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
6e6ad2ff991a55f5a6843916d2df5bd1.exe
Resource
win10v2004-20231215-en
General
-
Target
6e6ad2ff991a55f5a6843916d2df5bd1.exe
-
Size
72KB
-
MD5
6e6ad2ff991a55f5a6843916d2df5bd1
-
SHA1
9817478341e15d7583b34b70a401388f93540639
-
SHA256
18ff6d88c54f95d1420672cf213964927660e79edb1d2997119fddc7664e4eaa
-
SHA512
eb8150623bd0fe7861d6761be735a19ee998976b115730baf2b38f143d241222e2963f94d5bddbc7030c970e6c151629a2d3d143f5a34e872300dc5634f72959
-
SSDEEP
1536:INE394JFv65ERp0JjmD9VdowwgNPMb+KR0Nc8QsJq39:2EGJF8ERpOOPe0Nc8QsC9
Malware Config
Extracted
metasploit
windows/shell_reverse_tcp
212.77.204.53:443
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.