Overview

overview

10

Static

static

sysdvx.exe

windows7-x64

10

sysdvx.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    sysdvx.exe

  • Size

    573KB

  • Sample

    220829-g267naeaf9

  • MD5

    0554bb64f82b5627c462e93bc429ff4d

  • SHA1

    653de64978dcca54d5ee89a9662390fdc14e91f7

  • SHA256

    eb580a26823d80a1777d9f9f10ca3e13b74c676c0f867835ad39d137c01027f1

  • SHA512

    1af7c18fb8bc52cc83fa17a3b1d2102739a78e931ea0035624aa78b5a7cb913cc41b5de76c6410e4440ded842bd7bd953966ce880dc5335ca23b1a91d1014201

  • SSDEEP

    12288:SJ3uf7OsQ7UjPHEETmB6RvN52KDa69QzujwduZrIbuSE:jfXjPBTO4NWKjwduZrIbo

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

212.83.163.95:7777

Targets

    • Target

      sysdvx.exe

    • Size

      573KB

    • MD5

      0554bb64f82b5627c462e93bc429ff4d

    • SHA1

      653de64978dcca54d5ee89a9662390fdc14e91f7

    • SHA256

      eb580a26823d80a1777d9f9f10ca3e13b74c676c0f867835ad39d137c01027f1

    • SHA512

      1af7c18fb8bc52cc83fa17a3b1d2102739a78e931ea0035624aa78b5a7cb913cc41b5de76c6410e4440ded842bd7bd953966ce880dc5335ca23b1a91d1014201

    • SSDEEP

      12288:SJ3uf7OsQ7UjPHEETmB6RvN52KDa69QzujwduZrIbuSE:jfXjPBTO4NWKjwduZrIbo

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks