General
-
Target
trigger.vbs
-
Size
7KB
-
Sample
240606-xl65qaad5t
-
MD5
2026d6fcbafcfd77ebbe047864943156
-
SHA1
3e5cc28548561728bddd8e6ba33fd799259499b6
-
SHA256
2935f78883b74b4f8758fdf0e7b1d49dc5e114189d595ab60040e25e2587ff90
-
SHA512
6bb81ab5beff055c46e74a00e1df042c074e7207cc62846771d5df2eae216edd4c1929f5a7087f8a28d8914cd598f8dc2fff68420385c31f8bfa4233438f3123
-
SSDEEP
96:l/7/l5e8T+CY0PvBjfpi1nXBFX7g6h6zyCkVU3Ngih00HM4v0GRvMIDucTSNd1:57/lNzVKHGyCkVC08/vMIruNd1
Static task
static1
Behavioral task
behavioral1
Sample
trigger.vbs
Resource
win10-20240404-en
Malware Config
Extracted
metasploit
encoder/shikata_ga_nai
Extracted
metasploit
windows/shell_reverse_tcp
109.93.203.238:443
Targets
-
-
Target
trigger.vbs
-
Size
7KB
-
MD5
2026d6fcbafcfd77ebbe047864943156
-
SHA1
3e5cc28548561728bddd8e6ba33fd799259499b6
-
SHA256
2935f78883b74b4f8758fdf0e7b1d49dc5e114189d595ab60040e25e2587ff90
-
SHA512
6bb81ab5beff055c46e74a00e1df042c074e7207cc62846771d5df2eae216edd4c1929f5a7087f8a28d8914cd598f8dc2fff68420385c31f8bfa4233438f3123
-
SSDEEP
96:l/7/l5e8T+CY0PvBjfpi1nXBFX7g6h6zyCkVU3Ngih00HM4v0GRvMIDucTSNd1:57/lNzVKHGyCkVC08/vMIruNd1
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Executes dropped EXE
-