General
-
Target
ok.exe
-
Size
4.2MB
-
Sample
240628-hj7adayfmr
-
MD5
ec6581a4caf3c65ead5951ea178774cd
-
SHA1
af4c5700f8961589056267bec0d84f97175926d0
-
SHA256
af6116778d24cea89c8c0a4662326440ab685bb2c1bd474311f408079eb3db9b
-
SHA512
072d1d181ff66cf515a83fc0cfc4aaef0858ac4572c151ae4aea5417622078743e68291f6df0887ba8842398dfaf3d4576552c34b4b9e8dff04f02de364c5871
-
SSDEEP
49152:oYojsldP7HovyKiULrIQjc5E8uxIdtHmLt3/E2yOy1bmvtF6BfEt:9ltrIiULUbETIzE5Vyh1bmvGfi
Behavioral task
behavioral1
Sample
ok.exe
Resource
win10-20240611-en
Behavioral task
behavioral2
Sample
ok.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
metasploit
windows/reverse_tcp
192.168.1.1:4444
Targets
-
-
Target
ok.exe
-
Size
4.2MB
-
MD5
ec6581a4caf3c65ead5951ea178774cd
-
SHA1
af4c5700f8961589056267bec0d84f97175926d0
-
SHA256
af6116778d24cea89c8c0a4662326440ab685bb2c1bd474311f408079eb3db9b
-
SHA512
072d1d181ff66cf515a83fc0cfc4aaef0858ac4572c151ae4aea5417622078743e68291f6df0887ba8842398dfaf3d4576552c34b4b9e8dff04f02de364c5871
-
SSDEEP
49152:oYojsldP7HovyKiULrIQjc5E8uxIdtHmLt3/E2yOy1bmvtF6BfEt:9ltrIiULUbETIzE5Vyh1bmvGfi
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-