General

  • Target

    49716ac7b5289e59d0cf158dfb857b31.exe

  • Size

    3.1MB

  • Sample

    240107-x1dfysccbq

  • MD5

    49716ac7b5289e59d0cf158dfb857b31

  • SHA1

    87247bcda8f9ad39fec20bbf02e368c780d2d347

  • SHA256

    d2f66e819da36f011b8478f18cee088039fa3566211bdf85e13db0951fb502df

  • SHA512

    20228da10be14e13fe1b91213629ae915767e9e67503e300e2228d885e7d0783b437e4f2d8b595e2c2fe2647073d272bc10033b2743dc8ced97bf337f4432996

  • SSDEEP

    49152:AtBOBfJXAJR4GDZbUv8zkTt0bX8kZghnbBhsoVAEIFXjsHmNMXWJxr7R:AtBOBfKhUv8zkR8Zq9hzAdjsH/XWbR

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

10.0.0.2:4444

Targets

    • Target

      49716ac7b5289e59d0cf158dfb857b31.exe

    • Size

      3.1MB

    • MD5

      49716ac7b5289e59d0cf158dfb857b31

    • SHA1

      87247bcda8f9ad39fec20bbf02e368c780d2d347

    • SHA256

      d2f66e819da36f011b8478f18cee088039fa3566211bdf85e13db0951fb502df

    • SHA512

      20228da10be14e13fe1b91213629ae915767e9e67503e300e2228d885e7d0783b437e4f2d8b595e2c2fe2647073d272bc10033b2743dc8ced97bf337f4432996

    • SSDEEP

      49152:AtBOBfJXAJR4GDZbUv8zkTt0bX8kZghnbBhsoVAEIFXjsHmNMXWJxr7R:AtBOBfKhUv8zkR8Zq9hzAdjsH/XWbR

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Enterprise v15

Tasks