Analysis
-
max time kernel
147s -
max time network
150s -
platform
windows10-2004_x64 -
resource
win10v2004-20240412-en -
resource tags
arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system -
submitted
16-04-2024 20:52
Behavioral task
behavioral1
Sample
payload_meterpreter_46.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
payload_meterpreter_46.exe
Resource
win10v2004-20240412-en
General
-
Target
payload_meterpreter_46.exe
-
Size
72KB
-
MD5
3801e7dfbd9caa701e4f88093b9c3df4
-
SHA1
65421d6a7e441703fde942ec9ee75ac070bd517c
-
SHA256
fad0e256c1e3d891ba637d9be601a40990f005c4ac305cfc555c6965819a2bc2
-
SHA512
5b04ecbbdb50580ab448ff1b36ee452028f632d16425098040986959d4ac2cabc4bfc242fae2fdfd9a5a97689529a6888dd986a98720e7ec183e46baccd3fabc
-
SSDEEP
1536:I+ms/2B6tJRI8c6wmCJatjUBz9pEq11Mb+KR0Nc8QsJq39:HBG8c6wmyVBsO1e0Nc8QsC9
Malware Config
Extracted
metasploit
windows/reverse_tcp
192.168.0.100:4444
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.