General

  • Target

    75f5cdb622910188abe5cbbc0fb0e2a392de42f2e6acd216c7e18d828793e1d2

  • Size

    153KB

  • Sample

    240122-e6mbyagdbq

  • MD5

    4eef3d2844c306f144931026b7dad35c

  • SHA1

    9482d1aad6b914e6f70e5fca4bfb50f25ef08fd1

  • SHA256

    75f5cdb622910188abe5cbbc0fb0e2a392de42f2e6acd216c7e18d828793e1d2

  • SHA512

    ebb93f42a27fb0f5b523060e3a066fb12918385f1c4920056e9c7339e80d6bb76bc2b7aface8451d388ccc52f21e787a531286a8367e203d8852b7c59fd68c84

  • SSDEEP

    3072:IwzvOYZt5YP/aKavT/DvbhIi9N4SRbNI2B+JlIjDe7kal2n1TWl9o1B0C98CqtVS:7tiP/aK260mE/B+rC

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.1.99:4444

Targets

    • Target

      75f5cdb622910188abe5cbbc0fb0e2a392de42f2e6acd216c7e18d828793e1d2

    • Size

      153KB

    • MD5

      4eef3d2844c306f144931026b7dad35c

    • SHA1

      9482d1aad6b914e6f70e5fca4bfb50f25ef08fd1

    • SHA256

      75f5cdb622910188abe5cbbc0fb0e2a392de42f2e6acd216c7e18d828793e1d2

    • SHA512

      ebb93f42a27fb0f5b523060e3a066fb12918385f1c4920056e9c7339e80d6bb76bc2b7aface8451d388ccc52f21e787a531286a8367e203d8852b7c59fd68c84

    • SSDEEP

      3072:IwzvOYZt5YP/aKavT/DvbhIi9N4SRbNI2B+JlIjDe7kal2n1TWl9o1B0C98CqtVS:7tiP/aK260mE/B+rC

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks