General
-
Target
london2.exe
-
Size
72KB
-
Sample
240418-lptg9aaf9x
-
MD5
c658ac6fa68a44e8195c059479fac119
-
SHA1
e6e6f0bf1638915b951b8b7fb180f03c3dca6405
-
SHA256
0439819ac1d857ac51841f9f72c0b3e3e370d588283a258df79be61794247e6d
-
SHA512
541533ed4f3e47e142abf6c38f363c44bb4fe3cd8056b4d7a572874c520ea6495f415b1ba43550c1d7ffc7b257ea775cc02175e435c9739a777fb7036fb409de
-
SSDEEP
1536:IDhoL0z1G5GGnZL82NWBc5UB5J6zipMb+KR0Nc8QsJq39:81z1G5FLRac5O5gzipe0Nc8QsC9
Behavioral task
behavioral1
Sample
london2.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
london2.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
metasploit
encoder/shikata_ga_nai
Extracted
metasploit
windows/reverse_tcp
54.173.0.241:4444
Targets
-
-
Target
london2.exe
-
Size
72KB
-
MD5
c658ac6fa68a44e8195c059479fac119
-
SHA1
e6e6f0bf1638915b951b8b7fb180f03c3dca6405
-
SHA256
0439819ac1d857ac51841f9f72c0b3e3e370d588283a258df79be61794247e6d
-
SHA512
541533ed4f3e47e142abf6c38f363c44bb4fe3cd8056b4d7a572874c520ea6495f415b1ba43550c1d7ffc7b257ea775cc02175e435c9739a777fb7036fb409de
-
SSDEEP
1536:IDhoL0z1G5GGnZL82NWBc5UB5J6zipMb+KR0Nc8QsJq39:81z1G5FLRac5O5gzipe0Nc8QsC9
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-