Analysis
-
max time kernel
117s -
max time network
117s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
08-06-2024 17:52
Static task
static1
Behavioral task
behavioral1
Sample
artifact_x86.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
artifact_x86.exe
Resource
win10v2004-20240508-en
General
-
Target
artifact_x86.exe
-
Size
14KB
-
MD5
e0299831a208f6e1f77a717ddb9f0235
-
SHA1
145bd5480772b63120c6f1cb701d29a36b89778d
-
SHA256
316caf607cac5fb305b585863bc510a6140dfe6d3b87533aeeacfcf4f2e0e010
-
SHA512
d5d626f128b6f0825dbe868ffb5852bcd163f0fa097f6a25b4c25adc6171a8f66f6fc784dd5502dbb28a37dad557c37b2c83178ee48cead6ec5d0f441720910e
-
SSDEEP
192:13mbPYCfMcrfOIuZmvKQxtzlSIVX6NO/Owt7fejDMN1:UMCfrfQ6tBSItOwNeUN1
Malware Config
Extracted
metasploit
windows/download_exec
http://120.46.208.63:80/b2oY
- headers User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; InfoPath.2)
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.