Analysis
-
max time kernel
147s -
max time network
148s -
platform
windows7_x64 -
resource
win7-20240215-en -
resource tags
arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system -
submitted
20-05-2024 12:05
Behavioral task
behavioral1
Sample
venom.exe
Resource
win7-20240215-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
venom.exe
Resource
win10v2004-20240508-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
venom.exe
-
Size
72KB
-
MD5
195032debcdcfbd4e56986070144a475
-
SHA1
ae0dc7a77bbbbb868f58d7fadf744201c62a580c
-
SHA256
18efb574f87cff4df096736e24266656d17108ce4c0f183d97c5c6629f8da1e7
-
SHA512
bad30342d35192cb44483ce0a5f03a90f50b896db9b350531d157c3ec4867e60b7c3f6cdf2f347a2e4d0fbc865c9caf433c5cd91170037c72ea434f44b50c4c1
-
SSDEEP
1536:ImxqrezYqPXYZzkEJB1SXWH1qOvFMb+KR0Nc8QsJq39:xM4EzzJnSXWHUQe0Nc8QsC9
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
windows/reverse_tcp
C2
47.120.44.103:8899
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.