General
-
Target
68eedce4f4355a48e20ec7dd57dd2bd14f43e47e33d850e34986581980c5c8d5
-
Size
47KB
-
Sample
240501-2qsv4sbg38
-
MD5
7db248464bba10b25b36a640c50fce06
-
SHA1
265443455d4839b0c45bcff253bee45a501089c2
-
SHA256
68eedce4f4355a48e20ec7dd57dd2bd14f43e47e33d850e34986581980c5c8d5
-
SHA512
40504d4cb5b46d263839631fe92fee2255ae1b89d8e459f19c22d2cbf276e50f095a98aef050227e2f08b4826ad1a021d57a7a500122e9874a46efa294b1882c
-
SSDEEP
768:YLNslR0Pc4EGHKdNDzmzzlU/+BgAgiKU1/ZTDa+RwAt1PqcWG:XcPc4EoK65UYrHKSZfa+msPqcd
Behavioral task
behavioral1
Sample
68eedce4f4355a48e20ec7dd57dd2bd14f43e47e33d850e34986581980c5c8d5.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
metasploit
encoder/shikata_ga_nai
Extracted
metasploit
windows/reverse_http
http://192.168.153.129:8443/q1U4Yaj1IcSdxJzF-9P7ugla_Ulldpulotjx7Vcln-uoJQtGeB_GHIB97Xf9FPxTRExtppoPCrMt77yBu-a6RJCM_bz3NHY9go6LSHB0DNkL-rc54SIbgzkCuw-NXT3fVd-jt75-Zl04TITkempXkgi8qOX7jEhI8FxwPARojwMurV-osBkjCoCCdUh696up822prooavprCu5G0J8eyDY-_GZa-rpM
Targets
-
-
Target
68eedce4f4355a48e20ec7dd57dd2bd14f43e47e33d850e34986581980c5c8d5
-
Size
47KB
-
MD5
7db248464bba10b25b36a640c50fce06
-
SHA1
265443455d4839b0c45bcff253bee45a501089c2
-
SHA256
68eedce4f4355a48e20ec7dd57dd2bd14f43e47e33d850e34986581980c5c8d5
-
SHA512
40504d4cb5b46d263839631fe92fee2255ae1b89d8e459f19c22d2cbf276e50f095a98aef050227e2f08b4826ad1a021d57a7a500122e9874a46efa294b1882c
-
SSDEEP
768:YLNslR0Pc4EGHKdNDzmzzlU/+BgAgiKU1/ZTDa+RwAt1PqcWG:XcPc4EoK65UYrHKSZfa+msPqcd
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-