General
-
Target
sample1.exe_
-
Size
83KB
-
Sample
240530-hf8c9saf42
-
MD5
dec37e4b834cf3a9a78475fec06255db
-
SHA1
bc6a9f3dd99e40dfe34ba8c64401027a3d86d2bc
-
SHA256
075a8576bb2f75bf56cfa8c88727011ac66f176ca5abe2a78978c556577e5058
-
SHA512
8402a9206285014fe6ab3752433835a7f907406d2c5fb23204a567d3f9940c844578ee525c64b6a67d81bf0983e7d3972fb2380d822cc9fd08eec098749d4a77
-
SSDEEP
1536:Icus7AQXjNta73Jah9UFBD3JMb+KR0Nc8QsJq3Gnq3+/q3DlHq3/:lAYhta7ouJe0Nc8QsCzDDm/
Behavioral task
behavioral1
Sample
sample1.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
sample1.exe
Resource
win10v2004-20240426-en
Malware Config
Extracted
metasploit
windows/exec
Extracted
http://web.danger.mal/danger
Extracted
metasploit
windows/reverse_tcp_dns
web.danger.net:5555
Targets
-
-
Target
sample1.exe_
-
Size
83KB
-
MD5
dec37e4b834cf3a9a78475fec06255db
-
SHA1
bc6a9f3dd99e40dfe34ba8c64401027a3d86d2bc
-
SHA256
075a8576bb2f75bf56cfa8c88727011ac66f176ca5abe2a78978c556577e5058
-
SHA512
8402a9206285014fe6ab3752433835a7f907406d2c5fb23204a567d3f9940c844578ee525c64b6a67d81bf0983e7d3972fb2380d822cc9fd08eec098749d4a77
-
SSDEEP
1536:Icus7AQXjNta73Jah9UFBD3JMb+KR0Nc8QsJq3Gnq3+/q3DlHq3/:lAYhta7ouJe0Nc8QsCzDDm/
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Grants admin privileges
Uses net.exe to modify the user's privileges.
-