Analysis
-
max time kernel
126s -
max time network
128s -
platform
windows10-2004_x64 -
resource
win10v2004-20240704-en -
resource tags
arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system -
submitted
05-07-2024 15:46
Behavioral task
behavioral1
Sample
19afe133f088e7f6a49a683f0f69970c9d662157e741c69b898574e972ae49c5.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
19afe133f088e7f6a49a683f0f69970c9d662157e741c69b898574e972ae49c5.exe
Resource
win10v2004-20240704-en
General
-
Target
19afe133f088e7f6a49a683f0f69970c9d662157e741c69b898574e972ae49c5.exe
-
Size
72KB
-
MD5
99b1f5901c396f5d019f933eb80f6b09
-
SHA1
a694ebdf0af3f24cff2066725cb8ad2f918ed9b5
-
SHA256
19afe133f088e7f6a49a683f0f69970c9d662157e741c69b898574e972ae49c5
-
SHA512
41bd207777546d3a6de208859b84c1a25fa17e9c85f94aaa506a0ba2ed68c19f08d9d47ba6003c13c1234b875d8984b38174d736958c1edcf263e0c61e6847f8
-
SSDEEP
1536:Ia5f0kXFLG8f/JTO2mwtEw0pMb+KR0Nc8QsJq39:lMkfMwPge0Nc8QsC9
Malware Config
Extracted
metasploit
windows/reverse_tcp
144.22.38.242:5555
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.