metasploit | 5b94448e2b10cc9e86e3bdeef648f14e0cb0e5cbb4f726159c74478dc474b856

Analysis

max time kernel
15s
max time network
16s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
01-12-2024 16:35

Target

5b94448e2b10cc9e86e3bdeef648f14e0cb0e5cbb4f726159c74478dc474b856.exe
Size

63KB
MD5

ca0a51a5e268a4cfae0ac6f653338958
SHA1

02527870ad1f7512695215e52437e4a178f768c4
SHA256

5b94448e2b10cc9e86e3bdeef648f14e0cb0e5cbb4f726159c74478dc474b856
SHA512

6da4b1ccc1d63dd9e6715420b93795b97cee5579ca91b45eccc4a74ff18c651cc5ffc7531df22555d24e037810557dc945052e73c59db935fee83660ac8f9ab1
SSDEEP

384:sb5Dn14aBRPxi6qE3eTvaunyAYsUx0JIFItDzx1/Uq+QHzYylC9jI/QfBhQAQRP/:8BR8YGyhs0lFOXUBGTC9FBdQzA89R

Score

10^/10

Family

metasploit

Version

windows/shell_reverse_tcp

192.168.235.129:1234

MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
trojan backdoor metasploit
Metasploit family
metasploit

C:\Users\Admin\AppData\Local\Temp\5b94448e2b10cc9e86e3bdeef648f14e0cb0e5cbb4f726159c74478dc474b856.exe
"C:\Users\Admin\AppData\Local\Temp\5b94448e2b10cc9e86e3bdeef648f14e0cb0e5cbb4f726159c74478dc474b856.exe"
1⤵
PID:2236

memory/2236-0-0x000000013F210000-0x000000013F238000-memory.dmp

Filesize
160KB

Download
memory/2236-1-0x000000013F210000-0x000000013F238000-memory.dmp

Filesize
160KB

Download