Extracted

• • Target

    80c043e51341822e9ec36d1f028f88ef

  • Size

    476KB

  • MD5

    80c043e51341822e9ec36d1f028f88ef

  • SHA1

    b2a609c61277de6848cc726610e8e50aa807dcd2

  • SHA256

    1a0f9cc3e2b56ee0d51407547f8487f9a5a438ec261b61b7b3db1dfd90f169f8

  • SHA512

    5c14cbf47c845b393d288bd6df906778a41275e3103a559a2e6a88f57cdba263f7e11f726689d9abfb63639b58111240f0646850c8fa7cf1bd9cb7299b52b374

  • SSDEEP

    12288:aeJg3Stp4Bn+laUoW/6cOce8uhroZPXPQc:jJg3SYd+laUdOce8uV6Qc

  Score

  10^/10

  metasploitbackdoorthemidatrojan

  • MetaSploit

    Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    trojanbackdoormetasploit

  • Deletes itself

  • Themida packer

    Detects Themida, an advanced Windows software protection system.

    themida

  • Drops file in System32 directory

  behavioral1behavioral2