Analysis
-
max time kernel
93s -
max time network
113s -
platform
windows10-2004_x64 -
resource
win10v2004-20240412-en -
resource tags
arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system -
submitted
18-04-2024 20:46
Behavioral task
behavioral1
Sample
tmp.exe
Resource
win7-20240221-en
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
tmp.exe
Resource
win10v2004-20240412-en
1 signatures
150 seconds
General
-
Target
tmp.exe
-
Size
72KB
-
MD5
f372e6a6392dea339a61c8badfa4786e
-
SHA1
a7da988c807c50236c47f15bc38896a17b1b3459
-
SHA256
a4bbe6929dc2be5c5a94a463253856644619a54fc844a5448f7e346870bf7cb0
-
SHA512
b5ccff16b49a41d2faa4bf89f4c5f9ccd1ddf6d623e39918fe22f8547c0ce6dca92330c0a4891fc39fa071583261708d9057842ccafca1b1f71b3ad871073f23
-
SSDEEP
1536:IgdDhBW/BxlbjnMdm7oCrxUm5Mb+KR0Nc8QsJq39:FdGxprdMCtD5e0Nc8QsC9
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
encoder/shikata_ga_nai
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.