General

  • Target

    app.exe

  • Size

    72KB

  • Sample

    240404-nxl49aeg56

  • MD5

    c79c7fd5f3c80b224b50e04761c7e373

  • SHA1

    f05a0de4d53384a5cfbdadad8b3808e5e5384ba2

  • SHA256

    600ed7e7652de35ed171020f0da7795c9aff0a7cabd69ad9c9389a9fa46edc21

  • SHA512

    296e3ed3ef24bfb89c6e2f25d57d659531fd3ad4587ec495e13c83fb7ea9737fe84397616920a56dd9751bec594641e461a9a696da02febf1b352b8eaf3026b0

  • SSDEEP

    1536:IU70Wh2nC6XwTdf81J2pi4y94bRTMb+KR0Nc8QsJq39:h70Wh2n1XedqJ2pi70e0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

190.174.98.109:4444

Targets

    • Target

      app.exe

    • Size

      72KB

    • MD5

      c79c7fd5f3c80b224b50e04761c7e373

    • SHA1

      f05a0de4d53384a5cfbdadad8b3808e5e5384ba2

    • SHA256

      600ed7e7652de35ed171020f0da7795c9aff0a7cabd69ad9c9389a9fa46edc21

    • SHA512

      296e3ed3ef24bfb89c6e2f25d57d659531fd3ad4587ec495e13c83fb7ea9737fe84397616920a56dd9751bec594641e461a9a696da02febf1b352b8eaf3026b0

    • SSDEEP

      1536:IU70Wh2nC6XwTdf81J2pi4y94bRTMb+KR0Nc8QsJq39:h70Wh2n1XedqJ2pi70e0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks