Overview

overview

10

Static

static

10

7d37aba8b7...2a.exe

windows7-x64

10

7d37aba8b7...2a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7d37aba8b7034526e1794f72b8e0cc2a.bin

  • Size

    72KB

  • Sample

    240107-c21yescgcm

  • MD5

    7d37aba8b7034526e1794f72b8e0cc2a

  • SHA1

    2e207e916513ca72bea532d361ddf1b94c0b49e9

  • SHA256

    71fba6519b70623172170c020fc75c855669922971e09bd94c2ed4d21655334a

  • SHA512

    631a92a1806f06e80a7f63c109bb51c59482cb4c9e7b0cd565db6ef40f1cbc7583d2e84f098278b2f952dbfa461a60d2d9947bc3be6ab04628b1ca5f39a0a831

  • SSDEEP

    1536:I4qJzsAsHUWvppj0TbmMb/GTmd1EMb+KR0Nc8QsJq39:pqxsAsHUubwbmM/GEEe0Nc8QsC9

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_http

C2

http://193.117.208.148:7800/LKjfnzOJyXWM8I3x6a2B7ATw-f2d2825i0ecBaHZDzrJmkbJkwb5tYAjBKQllS7wpM3k8VC7GH5DI4vSMyAiPPF58p3DkYpjk5EgUslD229ERKm74SxjQBR2VQwTjG7cfJGw3JeJR80LACMmKx8KxzQPk

Targets

    • Target

      7d37aba8b7034526e1794f72b8e0cc2a.bin

    • Size

      72KB

    • MD5

      7d37aba8b7034526e1794f72b8e0cc2a

    • SHA1

      2e207e916513ca72bea532d361ddf1b94c0b49e9

    • SHA256

      71fba6519b70623172170c020fc75c855669922971e09bd94c2ed4d21655334a

    • SHA512

      631a92a1806f06e80a7f63c109bb51c59482cb4c9e7b0cd565db6ef40f1cbc7583d2e84f098278b2f952dbfa461a60d2d9947bc3be6ab04628b1ca5f39a0a831

    • SSDEEP

      1536:I4qJzsAsHUWvppj0TbmMb/GTmd1EMb+KR0Nc8QsJq39:pqxsAsHUubwbmM/GEEe0Nc8QsC9

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks