metasploit | 3aa6c7c1d2353e9d44cc8a3ebaaa56b45069c65b1ec0fae0a78fbae1808ec7c1

Analysis

max time kernel
105s
max time network
114s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
22-12-2024 02:52

Target

3aa6c7c1d2353e9d44cc8a3ebaaa56b45069c65b1ec0fae0a78fbae1808ec7c1.exe
Size

7KB
MD5

36d5e14c7d79b6c497040d7acc3f4d73
SHA1

481625c1794df59735f012516cc7ad1423674e01
SHA256

3aa6c7c1d2353e9d44cc8a3ebaaa56b45069c65b1ec0fae0a78fbae1808ec7c1
SHA512

65eea8d484783a3c9f3ce77fddba73dec23f2b7bf3e76f78b6fc5001cc0709eacfae76fb9dd62f0042e9effb4236a93c958f30d03b3fe768940b32209e38f99a
SSDEEP

24:eFGStrJ9u0/6v/wNRnZdkBQAVV1YLYKZq/eNDMSCvOXpmBt:is04ojkBQKqLY9SD9C2kBt

Score

10^/10

Family

metasploit

Version

metasploit_stager

192.168.242.128:8088

MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
trojan backdoor metasploit
Metasploit family
metasploit

C:\Users\Admin\AppData\Local\Temp\3aa6c7c1d2353e9d44cc8a3ebaaa56b45069c65b1ec0fae0a78fbae1808ec7c1.exe
"C:\Users\Admin\AppData\Local\Temp\3aa6c7c1d2353e9d44cc8a3ebaaa56b45069c65b1ec0fae0a78fbae1808ec7c1.exe"
1⤵
PID:2392

memory/2392-0-0x0000000140000000-0x0000000140004278-memory.dmp

Filesize
16KB

Download
memory/2392-1-0x0000000140000000-0x0000000140004278-memory.dmp

Filesize
16KB

Download