Overview

overview

10

Static

static

0e15ff333d...a5.exe

windows7_x64

10

0e15ff333d...a5.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0e15ff333d7b5774ee2bd5bb57ee586eece975a90b3abbeaab9d66d993350ba5

  • Size

    1.4MB

  • Sample

    220529-sp9ykahhcl

  • MD5

    ef6469ad1bd075a5fd74f6c17a4493ad

  • SHA1

    66380a2bd32d9a59a01d86316f042222e8e20cd1

  • SHA256

    0e15ff333d7b5774ee2bd5bb57ee586eece975a90b3abbeaab9d66d993350ba5

  • SHA512

    2be0b514d8f2051ef8fce76dfef097627ef229af97a16860f7867c103c702588a3520f73c7076d9c91c4cd9bd7f156f67b170a7a0080fbd56e7caec994559730

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_http

C2

http://165.22.98.128:1123/ezH91VYeNmDZrdishFkyXgiePef2Gq3ROFn

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Targets

    • Target

      0e15ff333d7b5774ee2bd5bb57ee586eece975a90b3abbeaab9d66d993350ba5

    • Size

      1.4MB

    • MD5

      ef6469ad1bd075a5fd74f6c17a4493ad

    • SHA1

      66380a2bd32d9a59a01d86316f042222e8e20cd1

    • SHA256

      0e15ff333d7b5774ee2bd5bb57ee586eece975a90b3abbeaab9d66d993350ba5

    • SHA512

      2be0b514d8f2051ef8fce76dfef097627ef229af97a16860f7867c103c702588a3520f73c7076d9c91c4cd9bd7f156f67b170a7a0080fbd56e7caec994559730

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks