Overview

overview

10

Static

static

3

536f2dcce6...3b.exe

windows7-x64

10

536f2dcce6...3b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    536f2dcce6a27bad2c6c5440258ba6aab48acd12ed25d38fc914c195503e343b

  • Size

    18KB

  • Sample

    240328-xpgdgadg4x

  • MD5

    f7ec4e2dfb091eceefc9bc344bd18fd2

  • SHA1

    0a760fecb84590fb7c261c5162d6a127b7a45e7f

  • SHA256

    536f2dcce6a27bad2c6c5440258ba6aab48acd12ed25d38fc914c195503e343b

  • SHA512

    56b84577d61f27a2a22fe30e88ad64eed9727ccafa8ebb514be674f9b0fb1a6fcf7a1168961d87456759048f98062e5588e7918e1c0cb471e3b2bab30c363051

  • SSDEEP

    384:UMCf6zx3EpxJif6HmBzXusgHeUN1fy6zqMRt3JsT:RC+6JiXBrXg+UXysh3JsT

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_http

C2

http://192.168.2.105:4444/A56WY

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://192.168.2.105:443/NKYj

Targets

    • Target

      536f2dcce6a27bad2c6c5440258ba6aab48acd12ed25d38fc914c195503e343b

    • Size

      18KB

    • MD5

      f7ec4e2dfb091eceefc9bc344bd18fd2

    • SHA1

      0a760fecb84590fb7c261c5162d6a127b7a45e7f

    • SHA256

      536f2dcce6a27bad2c6c5440258ba6aab48acd12ed25d38fc914c195503e343b

    • SHA512

      56b84577d61f27a2a22fe30e88ad64eed9727ccafa8ebb514be674f9b0fb1a6fcf7a1168961d87456759048f98062e5588e7918e1c0cb471e3b2bab30c363051

    • SSDEEP

      384:UMCf6zx3EpxJif6HmBzXusgHeUN1fy6zqMRt3JsT:RC+6JiXBrXg+UXysh3JsT

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks