Overview

overview

10

Static

static

10

reverse.exe

windows7-x64

10

reverse.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    reverse.exe

  • Size

    7KB

  • Sample

    231117-1kgefsed93

  • MD5

    783a0f507b27f25489101cb3bcc3b3d8

  • SHA1

    153eb52c1996b23124e330cbace600f011c98872

  • SHA256

    9321b65c7154812d0c79ce0780fecea005c503d74b3775bb457b287593cfdd92

  • SHA512

    b74e65a47f119966a56ffb172d2311a4333a00879f78cc91940db6cdc4632e17cd47ca0188d5076f8a1674ad32b09fdfe762857178765f23515f62227d1e421b

  • SSDEEP

    24:eFGStrJ9u0/63uYnZdkBQAV2GY+1KLqBxeNDMSCvOXpmB:is0nskBQR+1vSD9C2kB

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

153.127.59.134:10001

Targets

    • Target

      reverse.exe

    • Size

      7KB

    • MD5

      783a0f507b27f25489101cb3bcc3b3d8

    • SHA1

      153eb52c1996b23124e330cbace600f011c98872

    • SHA256

      9321b65c7154812d0c79ce0780fecea005c503d74b3775bb457b287593cfdd92

    • SHA512

      b74e65a47f119966a56ffb172d2311a4333a00879f78cc91940db6cdc4632e17cd47ca0188d5076f8a1674ad32b09fdfe762857178765f23515f62227d1e421b

    • SSDEEP

      24:eFGStrJ9u0/63uYnZdkBQAV2GY+1KLqBxeNDMSCvOXpmB:is0nskBQR+1vSD9C2kB

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks