metasploit | b1a6624c78f881a944e27a2451addb6c7d2b65c8db155eb9a88ce2f2f5dbdc84

Analysis

max time kernel
147s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
11-06-2024 02:12

Target

b1a6624c78f881a944e27a2451addb6c7d2b65c8db155eb9a88ce2f2f5dbdc84.exe
Size

72KB
MD5

2b947abedeaec0660d062b5d9e712155
SHA1

e600eefd406d893c420d5d8a6a647be9322f4370
SHA256

b1a6624c78f881a944e27a2451addb6c7d2b65c8db155eb9a88ce2f2f5dbdc84
SHA512

c43a115beaa810735ca1229d0bb9c7b5ee4f6a2b095e8343dd541adbf1db8c1cbd4513f284b4b0217fe8cf097882f7c8d99eab0fd4860477198847f70039caf6
SSDEEP

1536:IG9YZ0cRzYkbLdfT5Rjstff8D8NlnkCwoHinMb+KR0Nc8QsJq39:jYZ0cRzxfd1VVD8DnkCwoYe0Nc8QsC9

Score

10^/10

Family

metasploit

Version

windows/reverse_tcp

139.224.198.190:4455

MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
trojan backdoor metasploit

C:\Users\Admin\AppData\Local\Temp\b1a6624c78f881a944e27a2451addb6c7d2b65c8db155eb9a88ce2f2f5dbdc84.exe
"C:\Users\Admin\AppData\Local\Temp\b1a6624c78f881a944e27a2451addb6c7d2b65c8db155eb9a88ce2f2f5dbdc84.exe"
1⤵
PID:4144

memory/4144-0-0x00000000005B0000-0x00000000005B1000-memory.dmp

Filesize
4KB

Download