Analysis Overview
SHA256
4d77f00f7e725cce85333825fed5937b8bb05d1e1ca61c132f9415f35861d3ef
Threat Level: Known bad
The file 4d77f00f7e725cce85333825fed5937b8bb05d1e1ca61c132f9415f35861d3ef was found to be: Known bad.
Malicious Activity Summary
MetaSploit
Drops file in Program Files directory
Unsigned PE
MITRE ATT&CK Matrix
Analysis: static1
Detonation Overview
Reported
2024-06-19 09:32
Signatures
Unsigned PE
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-19 09:32
Reported
2024-06-19 09:35
Platform
win10v2004-20240508-en
Max time kernel
51s
Max time network
51s
Command Line
Signatures
MetaSploit
Drops file in Program Files directory
Processes
C:\Users\Admin\AppData\Local\Temp\4d77f00f7e725cce85333825fed5937b8bb05d1e1ca61c132f9415f35861d3ef.exe
"C:\Users\Admin\AppData\Local\Temp\4d77f00f7e725cce85333825fed5937b8bb05d1e1ca61c132f9415f35861d3ef.exe"
Network
| Country | Destination | Domain | Proto |
| N/A | 192.168.1.111:4444 | tcp | |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
Files
memory/4796-0-0x00000000006B0000-0x00000000006B1000-memory.dmp
memory/4796-139-0x00000000006B0000-0x00000000006B1000-memory.dmp
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-19 09:32
Reported
2024-06-19 09:35
Platform
win7-20231129-en
Max time kernel
120s
Max time network
120s
Command Line
Signatures
MetaSploit
Drops file in Program Files directory
Processes
C:\Users\Admin\AppData\Local\Temp\4d77f00f7e725cce85333825fed5937b8bb05d1e1ca61c132f9415f35861d3ef.exe
"C:\Users\Admin\AppData\Local\Temp\4d77f00f7e725cce85333825fed5937b8bb05d1e1ca61c132f9415f35861d3ef.exe"
Network
| Country | Destination | Domain | Proto |
| N/A | 192.168.1.111:4444 | tcp |
Files
memory/2512-0-0x0000000000240000-0x0000000000241000-memory.dmp
memory/2512-139-0x0000000000240000-0x0000000000241000-memory.dmp