General

  • Target

    6e046129fcf71e28c3de69ff87003be6

  • Size

    72KB

  • Sample

    240121-zws2ysabfq

  • MD5

    6e046129fcf71e28c3de69ff87003be6

  • SHA1

    ef97acd9384c24a145cd69ef58a1b85b96d7aef1

  • SHA256

    f05434e002182edf17534c9902b8acba222d4d69220b4782217d7c37db5c2637

  • SHA512

    5e6ff200fea7d889c5fb59f9cd047fdfbb9ea6b3c4906bfdd5960d758ab84bb88042c503bd4c1be992d5979f9243ca97ed8a5e08920036384e60cb9088f4f767

  • SSDEEP

    1536:IgghBf6qbxRfmCwpoV0vKZg1MUMb+KR0Nc8QsJq39:Rgh56WxMpoVIkg1he0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.0.12:4444

Targets

    • Target

      6e046129fcf71e28c3de69ff87003be6

    • Size

      72KB

    • MD5

      6e046129fcf71e28c3de69ff87003be6

    • SHA1

      ef97acd9384c24a145cd69ef58a1b85b96d7aef1

    • SHA256

      f05434e002182edf17534c9902b8acba222d4d69220b4782217d7c37db5c2637

    • SHA512

      5e6ff200fea7d889c5fb59f9cd047fdfbb9ea6b3c4906bfdd5960d758ab84bb88042c503bd4c1be992d5979f9243ca97ed8a5e08920036384e60cb9088f4f767

    • SSDEEP

      1536:IgghBf6qbxRfmCwpoV0vKZg1MUMb+KR0Nc8QsJq39:Rgh56WxMpoVIkg1he0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks