Analysis
-
max time kernel
105s -
max time network
114s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
-
submitted
20-11-2024 23:14
General
-
Target
a5e6f520487916f64d6948151004cb7d9928f8d2d9a2a2832a5c42e787ae74c2.exe
-
Size
8KB
-
MD5
3f2514503ea7a3877c3218df6cd0a352
-
SHA1
a8332f50c36cec4d3eea670d395c2a348798f94c
-
SHA256
a5e6f520487916f64d6948151004cb7d9928f8d2d9a2a2832a5c42e787ae74c2
-
SHA512
d6004c4b69163b02312750a7a5cac1a8e108226055834f6613f529b983d5396fb2a4a940b28c91f78968b6e1bc41ff6be77b2130b3c5412ee9f7452072c7bc77
-
SSDEEP
192:u6UTAHO20dR8uRJfU9WoPXjSzruVQG6v6OmoZ:u6UUHODdRTtkWoPXjSHuVgmoZ
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
encoder/shikata_ga_nai
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Metasploit family
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
Processes
-
C:\Users\Admin\AppData\Local\Temp\a5e6f520487916f64d6948151004cb7d9928f8d2d9a2a2832a5c42e787ae74c2.exe"C:\Users\Admin\AppData\Local\Temp\a5e6f520487916f64d6948151004cb7d9928f8d2d9a2a2832a5c42e787ae74c2.exe"1⤵
- System Location Discovery: System Language Discovery
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB