Analysis
-
max time kernel
147s -
max time network
148s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
18-12-2024 12:05
General
-
Target
804a71e14bb926a83bcfca4415360161413b697b6164f93064bc4a80c79536d4.exe
-
Size
72KB
-
MD5
05ddeff88d55c4722f43f5917436ce74
-
SHA1
dc84619b729ff65f95cce2cc3a6b30351ecd1b14
-
SHA256
804a71e14bb926a83bcfca4415360161413b697b6164f93064bc4a80c79536d4
-
SHA512
20e1065b45b7ee8fbf61022260d30813693b6cf95b67dd4a7efaa3daecdfdc0277833f433c332953f0b9678bcb4209bfb3d539c9b934d74263dfbe0571bd42c6
-
SSDEEP
1536:Iv5gaCXYmUonPk75iIFhMb+KR0Nc8QsJq3t:qG/5nPk1iIFhe0Nc8QsCt
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
encoder/shikata_ga_nai
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Metasploit family
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
Processes
-
C:\Users\Admin\AppData\Local\Temp\804a71e14bb926a83bcfca4415360161413b697b6164f93064bc4a80c79536d4.exe"C:\Users\Admin\AppData\Local\Temp\804a71e14bb926a83bcfca4415360161413b697b6164f93064bc4a80c79536d4.exe"1⤵
- System Location Discovery: System Language Discovery
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB