Analysis
-
max time kernel
54s -
max time network
63s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
05-07-2024 20:51
Behavioral task
behavioral1
Sample
3f0c7e7a3426a95f0d5ea44ef405e0c3f2197852ab3308227bd9a7238fec8a7e.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
3f0c7e7a3426a95f0d5ea44ef405e0c3f2197852ab3308227bd9a7238fec8a7e.exe
Resource
win10v2004-20240508-en
General
-
Target
3f0c7e7a3426a95f0d5ea44ef405e0c3f2197852ab3308227bd9a7238fec8a7e.exe
-
Size
7KB
-
MD5
297c703fd2155abc735c9a545eb176cd
-
SHA1
afdd5bffd1cb64b5633a6644f121728d6763e794
-
SHA256
3f0c7e7a3426a95f0d5ea44ef405e0c3f2197852ab3308227bd9a7238fec8a7e
-
SHA512
c7c595745ba5eec40467fd3739476ea3720899bcb0de00786b710e592244ab9e09e17cb40d62471d4f8f057a78d9474542282164811bb937a2b92ac0f9fb2bb8
-
SSDEEP
24:eFGStrJ9u0/6yonZdkBQAVnVjYOiADyRzNpmB:is0L8kBQIVUOiA82B
Malware Config
Extracted
metasploit
encoder/shikata_ga_nai
Extracted
metasploit
metasploit_stager
192.168.1.120:443
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.