Analysis
-
max time kernel
147s -
max time network
150s -
platform
windows10-2004_x64 -
resource
win10v2004-20240412-en -
resource tags
arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system -
submitted
18-04-2024 12:07
Behavioral task
behavioral1
Sample
windows.exe
Resource
win7-20240319-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
windows.exe
Resource
win10v2004-20240412-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
windows.exe
-
Size
72KB
-
MD5
cf164a39d69e7eb7fc5b5a99ecc00f11
-
SHA1
1b1f0b6a1b6a00dbc9a5a7b577bf6e4fc51eb821
-
SHA256
c8768bf0b8963981c3c0b4977609e9bd8c9c704eedb2fb1754017d67def53a3d
-
SHA512
96151a52b4f156362b72734fda6837fe22b918303623affecde67a9342afef8af17e00cda03f9ca45c82b954689d6e78339fa7f5f16580e3f5edcaad59fe611b
-
SSDEEP
1536:Ihf74OnNxDKW8gizRXFw3CXMb+KR0Nc8QsJq39:cf74OrHxilPe0Nc8QsC9
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
windows/reverse_tcp
C2
82.156.23.167:6666
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.