Overview

overview

10

Static

static

3

890e3cc249...12.exe

windows7-x64

10

890e3cc249...12.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    890e3cc249eb76e10004f58d7ac80a0c630637184f311dba58de8028403bd612

  • Size

    824KB

  • Sample

    230918-tzhgqsae7t

  • MD5

    ca53afdb9044a79fb0f0a6830413a1f5

  • SHA1

    0ce97407845494ac3f29f5e66b6111c2fca9ff97

  • SHA256

    890e3cc249eb76e10004f58d7ac80a0c630637184f311dba58de8028403bd612

  • SHA512

    b9c9084111b3fd37a0ed9c4f3ffe1ee0acad4989ac6a89a32bade7b1e022455aa2bc7ed8e70836abad7ef211a5152b536be71ef61fb05e9114a055e6014a6027

  • SSDEEP

    12288:x22jWIBZiiTuuFxKs78W6i9iY74ZMyLOuZ:/jWu9h8W6i8Y8qsZ

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

111.231.1.221:2222

Targets

    • Target

      890e3cc249eb76e10004f58d7ac80a0c630637184f311dba58de8028403bd612

    • Size

      824KB

    • MD5

      ca53afdb9044a79fb0f0a6830413a1f5

    • SHA1

      0ce97407845494ac3f29f5e66b6111c2fca9ff97

    • SHA256

      890e3cc249eb76e10004f58d7ac80a0c630637184f311dba58de8028403bd612

    • SHA512

      b9c9084111b3fd37a0ed9c4f3ffe1ee0acad4989ac6a89a32bade7b1e022455aa2bc7ed8e70836abad7ef211a5152b536be71ef61fb05e9114a055e6014a6027

    • SSDEEP

      12288:x22jWIBZiiTuuFxKs78W6i9iY74ZMyLOuZ:/jWu9h8W6i8Y8qsZ

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks