Extracted

• • Target

    a1400765e9663e5d9371ec55bb1080e32213380239b695f101d9910d072268fa.doc

  • Size

    42KB

  • MD5

    aa088b5feb939189376f8ff847810542

  • SHA1

    2adc19991578ec1fa66dc354555f08c964c1a146

  • SHA256

    a1400765e9663e5d9371ec55bb1080e32213380239b695f101d9910d072268fa

  • SHA512

    05c22fd812e21524c09233db4956daa0a0ab0f2e5574e76b3c13e57b38661e8021b1f3595b2c2a0efc340dd72fcfada9742dc472c9d814f142de3e6099f4c3a4

  • SSDEEP

    384:Q8iSUR/8dSAZs+pek/id88MPPZ9JbT9AukyzQ/SDQM1k9Dey0jEm/otP:y/q8+pekqd88aZ9JFWSrG1Jm/e

  Score

  10^/10

  metasploitbackdoordiscoverytrojan

  • MetaSploit

    Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    trojanbackdoormetasploit

  • Metasploit family

    metasploit

  • Process spawned unexpected child process

    This typically indicates the parent process was compromised via an exploit or macro.

  behavioral1behavioral2