Analysis
-
max time kernel
147s -
max time network
149s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
-
submitted
25-11-2024 05:40
General
-
Target
3d7ced48b86d387369d07eb877c3a0cd78883911ca295d85a8ac5b45025e9a47.exe
-
Size
72KB
-
MD5
e5976ef443c98748fe327d04cf01d853
-
SHA1
706fa53c220261c377ff315ce1119458e0a0171b
-
SHA256
3d7ced48b86d387369d07eb877c3a0cd78883911ca295d85a8ac5b45025e9a47
-
SHA512
2e156d8dbe7987118a0e4daa19da2b13c1b1eaf896cf79f75f559929cb8808856b9cae2735c60ee38297a65899696f7180752490d3b24408eaeb28e787962e50
-
SSDEEP
1536:IdLkP34UDldf/eju8BzrUSAMzBBVRsUopKeMb+KR0Nc8QsJq3F:Nbd+jFWhMdFsUoPe0Nc8QsCF
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
encoder/shikata_ga_nai
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Metasploit family
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
Processes
-
C:\Users\Admin\AppData\Local\Temp\3d7ced48b86d387369d07eb877c3a0cd78883911ca295d85a8ac5b45025e9a47.exe"C:\Users\Admin\AppData\Local\Temp\3d7ced48b86d387369d07eb877c3a0cd78883911ca295d85a8ac5b45025e9a47.exe"1⤵
- System Location Discovery: System Language Discovery
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB