Analysis
-
max time kernel
147s -
max time network
153s -
platform
windows10-2004_x64 -
resource
win10v2004-20240704-en -
resource tags
arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system -
submitted
06-07-2024 03:47
Behavioral task
behavioral1
Sample
3c1d16b82c6450ff964c535f91da93d0.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
3c1d16b82c6450ff964c535f91da93d0.exe
Resource
win10v2004-20240704-en
General
-
Target
3c1d16b82c6450ff964c535f91da93d0.exe
-
Size
72KB
-
MD5
3c1d16b82c6450ff964c535f91da93d0
-
SHA1
992ae56d6b928e25a06761c34b258a92b02fe79e
-
SHA256
a98717e512cfb15022efb61c48280478f3d776cbba219cce02855ef5c26198d6
-
SHA512
271e7c19473d1dc5c7113c79938d9b097557bcd501b6744fb9871741a78b55944729b8d3db7688ed4dd9157162b112cda39c940c531cd421c4da42fa64fa00e6
-
SSDEEP
1536:IHApOd6zMO7wsXFlcFwoguKKMb+KR0Nc8QsJq39:04C6oO8sXFOF/guDe0Nc8QsC9
Malware Config
Extracted
metasploit
windows/reverse_tcp
116.198.226.233:5566
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.