General
-
Target
77ad8f8ffaf30ec6a4476f175aca10ca5de6be71033165bae112a8a670969154
-
Size
2.1MB
-
Sample
240628-mendxsthme
-
MD5
c3bdf643547acc575434e4d527318100
-
SHA1
344efd7c2e51ad98657c024574f15fd8b34ace6b
-
SHA256
77ad8f8ffaf30ec6a4476f175aca10ca5de6be71033165bae112a8a670969154
-
SHA512
cbb62fe7a9b4d2062dc550f65bbddc9d9069019ec4775c1267ef75859aa0241368a55d5d0e2bbd13cf396fc3f186be9b439da769f1f36b8a6da90110f586b010
-
SSDEEP
24576:bY2tJ4iKU3wYo0nJh/7r3N5BvzLzmxhe3Ijm7vMeTg6oiL6HjFs6nK+KX:bBJxjfo0HTrd59zLioYjc5zDGQ+K
Static task
static1
Behavioral task
behavioral1
Sample
77ad8f8ffaf30ec6a4476f175aca10ca5de6be71033165bae112a8a670969154.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
77ad8f8ffaf30ec6a4476f175aca10ca5de6be71033165bae112a8a670969154.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
metasploit
encoder/shikata_ga_nai
Extracted
metasploit
windows/reverse_tcp
192.168.8.99:4444
Targets
-
-
Target
77ad8f8ffaf30ec6a4476f175aca10ca5de6be71033165bae112a8a670969154
-
Size
2.1MB
-
MD5
c3bdf643547acc575434e4d527318100
-
SHA1
344efd7c2e51ad98657c024574f15fd8b34ace6b
-
SHA256
77ad8f8ffaf30ec6a4476f175aca10ca5de6be71033165bae112a8a670969154
-
SHA512
cbb62fe7a9b4d2062dc550f65bbddc9d9069019ec4775c1267ef75859aa0241368a55d5d0e2bbd13cf396fc3f186be9b439da769f1f36b8a6da90110f586b010
-
SSDEEP
24576:bY2tJ4iKU3wYo0nJh/7r3N5BvzLzmxhe3Ijm7vMeTg6oiL6HjFs6nK+KX:bBJxjfo0HTrd59zLioYjc5zDGQ+K
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Executes dropped EXE
-