metasploit | 012822502029b564d0f350e5d1391049cd9b916505b27b73d112c0f9f54fb956

Analysis

max time kernel
147s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
25/06/2024, 01:54

Target

67c94bbda3d8ff61d59eb18f751080e72b7261ed4ffca29f7d9679ef717757f1.exe
Size

4.6MB
MD5

46eb0edbec71f3754800448272e4eb49
SHA1

ea524298bd2a1a91d02839d12b69afed12821743
SHA256

67c94bbda3d8ff61d59eb18f751080e72b7261ed4ffca29f7d9679ef717757f1
SHA512

63629a779d075bddee668630734a9cd376a263e5d430bdd77ddf3aaebd9c7fa988177b72678ef953d37e0d4feaf22c55b12111328878fa36deb5a13030514235
SSDEEP

49152:98XT4f5tWd2UVMSXQbgEpeUH6yn+Cy+E+T9/4VO7DurDr/gpaV:98XXEpeUH6yn+Cy+nmpkC

Score

10^/10

Family

metasploit

Version

windows/shell_reverse_tcp

192.168.31.194:5000

MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
trojan backdoor metasploit

C:\Users\Admin\AppData\Local\Temp\67c94bbda3d8ff61d59eb18f751080e72b7261ed4ffca29f7d9679ef717757f1.exe
"C:\Users\Admin\AppData\Local\Temp\67c94bbda3d8ff61d59eb18f751080e72b7261ed4ffca29f7d9679ef717757f1.exe"
1⤵
PID:4584

memory/4584-0-0x0000000000950000-0x0000000000951000-memory.dmp

Filesize
4KB

Download
memory/4584-1-0x0000000000400000-0x00000000008BD000-memory.dmp

Filesize
4.7MB

Download