Analysis
-
max time kernel
147s -
max time network
152s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system -
submitted
22/01/2024, 06:39
Behavioral task
behavioral1
Sample
6efbd493a501a84f56c4d53df2bd88dc.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
6efbd493a501a84f56c4d53df2bd88dc.exe
Resource
win10v2004-20231215-en
General
-
Target
6efbd493a501a84f56c4d53df2bd88dc.exe
-
Size
72KB
-
MD5
6efbd493a501a84f56c4d53df2bd88dc
-
SHA1
370ac425e1f7d0d9c219f6f28d7339df40b16304
-
SHA256
f2d4c7a3ca9a01311fc8515a3af13311d8ebb8bc2a6f18a47a72207c03e476ef
-
SHA512
d92e3bc2161de0d0240b69f942b8d3eac4bf5647fccd548e103940b0098486b2435d9660567aa87169b2a7fa03a365c4b3a1947334d62b627356ea092edb73f6
-
SSDEEP
1536:Ir6GhETO01f/BVC30K3EMb+KR0Nc8QsJq39:m3hMjK0K3Ee0Nc8QsC9
Malware Config
Extracted
metasploit
windows/shell_reverse_tcp
220.244.228.145:443
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.