General
-
Target
536f2dcce6a27bad2c6c5440258ba6aab48acd12ed25d38fc914c195503e343b
-
Size
18KB
-
Sample
240328-xpgdgadg4x
-
MD5
f7ec4e2dfb091eceefc9bc344bd18fd2
-
SHA1
0a760fecb84590fb7c261c5162d6a127b7a45e7f
-
SHA256
536f2dcce6a27bad2c6c5440258ba6aab48acd12ed25d38fc914c195503e343b
-
SHA512
56b84577d61f27a2a22fe30e88ad64eed9727ccafa8ebb514be674f9b0fb1a6fcf7a1168961d87456759048f98062e5588e7918e1c0cb471e3b2bab30c363051
-
SSDEEP
384:UMCf6zx3EpxJif6HmBzXusgHeUN1fy6zqMRt3JsT:RC+6JiXBrXg+UXysh3JsT
Static task
static1
Behavioral task
behavioral1
Sample
536f2dcce6a27bad2c6c5440258ba6aab48acd12ed25d38fc914c195503e343b.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
536f2dcce6a27bad2c6c5440258ba6aab48acd12ed25d38fc914c195503e343b.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
metasploit
windows/reverse_http
http://192.168.2.105:4444/A56WY
Extracted
metasploit
windows/download_exec
http://192.168.2.105:443/NKYj
Targets
-
-
Target
536f2dcce6a27bad2c6c5440258ba6aab48acd12ed25d38fc914c195503e343b
-
Size
18KB
-
MD5
f7ec4e2dfb091eceefc9bc344bd18fd2
-
SHA1
0a760fecb84590fb7c261c5162d6a127b7a45e7f
-
SHA256
536f2dcce6a27bad2c6c5440258ba6aab48acd12ed25d38fc914c195503e343b
-
SHA512
56b84577d61f27a2a22fe30e88ad64eed9727ccafa8ebb514be674f9b0fb1a6fcf7a1168961d87456759048f98062e5588e7918e1c0cb471e3b2bab30c363051
-
SSDEEP
384:UMCf6zx3EpxJif6HmBzXusgHeUN1fy6zqMRt3JsT:RC+6JiXBrXg+UXysh3JsT
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-