General

  • Target

    27e81c033daddb21a817b9b81b91ac5b65d159fa1e13cf747530694bc2b06f88

  • Size

    80KB

  • Sample

    220616-dejw3aggdp

  • MD5

    885e619e305be6e90a88ccb346c00096

  • SHA1

    6766d1a917d9cf6ba47b179fa796fd86c1cd3215

  • SHA256

    27e81c033daddb21a817b9b81b91ac5b65d159fa1e13cf747530694bc2b06f88

  • SHA512

    31f61436381d5a3ade4ba613549f64f46ebd5bcdc88240d17f36c2006b58bd779901c4b312af160976531e039ecf778440382af7791efa9f262534d020dd67ce

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://5.189.184.60:443/components/massaction.ico

Targets

    • Target

      27e81c033daddb21a817b9b81b91ac5b65d159fa1e13cf747530694bc2b06f88

    • Size

      80KB

    • MD5

      885e619e305be6e90a88ccb346c00096

    • SHA1

      6766d1a917d9cf6ba47b179fa796fd86c1cd3215

    • SHA256

      27e81c033daddb21a817b9b81b91ac5b65d159fa1e13cf747530694bc2b06f88

    • SHA512

      31f61436381d5a3ade4ba613549f64f46ebd5bcdc88240d17f36c2006b58bd779901c4b312af160976531e039ecf778440382af7791efa9f262534d020dd67ce

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks