Analysis
-
max time kernel
122s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
01-05-2024 09:14
Static task
static1
Behavioral task
behavioral1
Sample
40daa463380d3aa0fdb47afeda6ca729faaa518a5dd6e6aa876c6e68b2a69011.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
40daa463380d3aa0fdb47afeda6ca729faaa518a5dd6e6aa876c6e68b2a69011.exe
Resource
win10v2004-20240419-en
General
-
Target
40daa463380d3aa0fdb47afeda6ca729faaa518a5dd6e6aa876c6e68b2a69011.exe
-
Size
14KB
-
MD5
86adbce5b00fbf9a9c5ab055c68b4931
-
SHA1
4402b3396ab382fb771b36c3dd647e6c47c14350
-
SHA256
40daa463380d3aa0fdb47afeda6ca729faaa518a5dd6e6aa876c6e68b2a69011
-
SHA512
e07d677296334b0f44e5c6bea22437cadc33b3657107a37cd7aea4be1c35dc5d75843d2257e9110da052780c72522e8cf7cbb9614a673be498d898a36502c8be
-
SSDEEP
192:63mbPYCfMcrfOIuZmvKQxtzlSIVX6NOomrYfejDMN1:xMCfrfQ6tBSI9YfeUN1
Malware Config
Extracted
metasploit
windows/download_exec
http://192.168.0.172:8099/Uh2m
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.