General

  • Target

    5d3490de0ef9ff4cb7ad97d1c536e855

  • Size

    204KB

  • Sample

    240115-qp9axshee2

  • MD5

    5d3490de0ef9ff4cb7ad97d1c536e855

  • SHA1

    db2493a8f5cb4ab41e7d03d3bccc73cb0cbe71ef

  • SHA256

    0d8f70dae8e4d4cf1180a5a56b0d40beaffae418f0fc64bac08274736cc55cc3

  • SHA512

    fe5b721094e560925fa28a9448d2067289e7e3bc890129d19de45cf726a099b403cb31329f46b3a12ba4adb78b0b1436a30747376d379c06f2489dd4fd3937c2

  • SSDEEP

    3072:b00KY+sgU7G3e0Nc8QsZ54z4Dv/Pfv/Pfv/Pfv/+Oeu+OQ0frMRZzFPk2I111KYs:BKY+vUX0Nc8QsQemHMzEMziy1W

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.201.128:4444

Targets

    • Target

      5d3490de0ef9ff4cb7ad97d1c536e855

    • Size

      204KB

    • MD5

      5d3490de0ef9ff4cb7ad97d1c536e855

    • SHA1

      db2493a8f5cb4ab41e7d03d3bccc73cb0cbe71ef

    • SHA256

      0d8f70dae8e4d4cf1180a5a56b0d40beaffae418f0fc64bac08274736cc55cc3

    • SHA512

      fe5b721094e560925fa28a9448d2067289e7e3bc890129d19de45cf726a099b403cb31329f46b3a12ba4adb78b0b1436a30747376d379c06f2489dd4fd3937c2

    • SSDEEP

      3072:b00KY+sgU7G3e0Nc8QsZ54z4Dv/Pfv/Pfv/Pfv/+Oeu+OQ0frMRZzFPk2I111KYs:BKY+vUX0Nc8QsQemHMzEMziy1W

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks