Analysis
-
max time kernel
147s -
max time network
151s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
11-06-2024 02:12
Behavioral task
behavioral1
Sample
b1a6624c78f881a944e27a2451addb6c7d2b65c8db155eb9a88ce2f2f5dbdc84.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
b1a6624c78f881a944e27a2451addb6c7d2b65c8db155eb9a88ce2f2f5dbdc84.exe
Resource
win10v2004-20240508-en
General
-
Target
b1a6624c78f881a944e27a2451addb6c7d2b65c8db155eb9a88ce2f2f5dbdc84.exe
-
Size
72KB
-
MD5
2b947abedeaec0660d062b5d9e712155
-
SHA1
e600eefd406d893c420d5d8a6a647be9322f4370
-
SHA256
b1a6624c78f881a944e27a2451addb6c7d2b65c8db155eb9a88ce2f2f5dbdc84
-
SHA512
c43a115beaa810735ca1229d0bb9c7b5ee4f6a2b095e8343dd541adbf1db8c1cbd4513f284b4b0217fe8cf097882f7c8d99eab0fd4860477198847f70039caf6
-
SSDEEP
1536:IG9YZ0cRzYkbLdfT5Rjstff8D8NlnkCwoHinMb+KR0Nc8QsJq39:jYZ0cRzxfd1VVD8DnkCwoYe0Nc8QsC9
Malware Config
Extracted
metasploit
windows/reverse_tcp
139.224.198.190:4455
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.