Overview

overview

10

Static

static

10

addCube.dll

windows7-x64

10

addCube.dll

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    addCube.dll

  • Size

    5KB

  • Sample

    220723-lyeepadham

  • MD5

    6f7b94f8618a450e7eb515e510532440

  • SHA1

    52d640160a461827635ad9ce6ca972484f213ec8

  • SHA256

    394bad1d7ae1007fd9faf8277a9c367d9f50462b524ef89dbbbb8398063315de

  • SHA512

    84856a3a4baf462bb55ea4649c134b33e8d9d2f75085fa0ee34907b361e542a2ceaff440f3f68b30652da440cc87272864530597a298f4a00a41f804d60bee7f

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

172.27.0.13:8080

Targets

    • Target

      addCube.dll

    • Size

      5KB

    • MD5

      6f7b94f8618a450e7eb515e510532440

    • SHA1

      52d640160a461827635ad9ce6ca972484f213ec8

    • SHA256

      394bad1d7ae1007fd9faf8277a9c367d9f50462b524ef89dbbbb8398063315de

    • SHA512

      84856a3a4baf462bb55ea4649c134b33e8d9d2f75085fa0ee34907b361e542a2ceaff440f3f68b30652da440cc87272864530597a298f4a00a41f804d60bee7f

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks