General
-
Target
d06257477192da6d2ab28347f7dccab6340431682e24ecfff52c21a08fcce3a9
-
Size
1.4MB
-
Sample
240618-lmkgkaxgmh
-
MD5
5e23be2e349dc6f67e89ce6a16660c1d
-
SHA1
4e167b524fc02dd528f1f432003d9cd7f8ecc34e
-
SHA256
d06257477192da6d2ab28347f7dccab6340431682e24ecfff52c21a08fcce3a9
-
SHA512
55dd77ad844395d0d88fa1bd8f44d41180e882ae33182c8ba33d284dce740fa2f95e2bed8d867889430e566abae32b5e4344b661999b662a03da8d4f5eeb7988
-
SSDEEP
24576:hijtHZ2fLQmC+FJSYdHO5rFZOZ1urZ03rzQAH0uWqRHz10lc7te0zFn:h0mi7qB307qR2l6Dz
Static task
static1
Behavioral task
behavioral1
Sample
d06257477192da6d2ab28347f7dccab6340431682e24ecfff52c21a08fcce3a9.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
d06257477192da6d2ab28347f7dccab6340431682e24ecfff52c21a08fcce3a9.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
metasploit
windows/download_exec
http://192.168.126.128:4446/MrCZ
- headers User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; NP09; NP09; MAAU)
Targets
-
-
Target
d06257477192da6d2ab28347f7dccab6340431682e24ecfff52c21a08fcce3a9
-
Size
1.4MB
-
MD5
5e23be2e349dc6f67e89ce6a16660c1d
-
SHA1
4e167b524fc02dd528f1f432003d9cd7f8ecc34e
-
SHA256
d06257477192da6d2ab28347f7dccab6340431682e24ecfff52c21a08fcce3a9
-
SHA512
55dd77ad844395d0d88fa1bd8f44d41180e882ae33182c8ba33d284dce740fa2f95e2bed8d867889430e566abae32b5e4344b661999b662a03da8d4f5eeb7988
-
SSDEEP
24576:hijtHZ2fLQmC+FJSYdHO5rFZOZ1urZ03rzQAH0uWqRHz10lc7te0zFn:h0mi7qB307qR2l6Dz
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-