Overview

overview

10

Static

static

10

c0922f9991...d9.exe

windows7-x64

1

c0922f9991...d9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c0922f9991b89f0d813b3ba6446083d9

  • Size

    58KB

  • Sample

    231222-rq4x9sccd7

  • MD5

    c0922f9991b89f0d813b3ba6446083d9

  • SHA1

    1fcc098745634000f69cee324bddc9523c42b0e4

  • SHA256

    da595c58b0d93303e2fbe7cda97279c2c953b4a6326c212205076dcdb822241c

  • SHA512

    cc157341217254ecaecce368c213bafc3337261c7a3daa8a68fd168ad88a3092096d5cf85cd648608364c70c957acaa9ea6e9dbaec8f40f2ed101a4ee5365665

  • SSDEEP

    1536:JeZatcodBTWpZ5VkCf3EV2NGjjOr/86p2Rog:JRtcoUZbh/KshKog

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.1.7:4444

Targets

    • Target

      c0922f9991b89f0d813b3ba6446083d9

    • Size

      58KB

    • MD5

      c0922f9991b89f0d813b3ba6446083d9

    • SHA1

      1fcc098745634000f69cee324bddc9523c42b0e4

    • SHA256

      da595c58b0d93303e2fbe7cda97279c2c953b4a6326c212205076dcdb822241c

    • SHA512

      cc157341217254ecaecce368c213bafc3337261c7a3daa8a68fd168ad88a3092096d5cf85cd648608364c70c957acaa9ea6e9dbaec8f40f2ed101a4ee5365665

    • SSDEEP

      1536:JeZatcodBTWpZ5VkCf3EV2NGjjOr/86p2Rog:JRtcoUZbh/KshKog

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks