General

  • Target

    Excel.exe

  • Size

    1.9MB

  • Sample

    240406-pk572aab6t

  • MD5

    c098e36477c39a6ea2cd8fe164c980ee

  • SHA1

    c0d8776cae61b8f86f5a7a3e28fe6b749abf2c41

  • SHA256

    dce0615343be09952ae95ad4242caf38121f0528386aab158833b27421f54f73

  • SHA512

    9752eec07c49f1b01886992a7d5f4b116cfee57e112313461bf2c8b18f515af6ea8fdcb6c2a5c1e971e2401a24d6f9324041a056836df90a2d6eb8a9f2374c98

  • SSDEEP

    24576:5WcpUOCtGUsm7Oi4MZRx5h6UjyDiFA0rSVj6AZu:T6OCtFsm7GMnHjSNjLu

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

14.225.218.123:4545

Targets

    • Target

      Excel.exe

    • Size

      1.9MB

    • MD5

      c098e36477c39a6ea2cd8fe164c980ee

    • SHA1

      c0d8776cae61b8f86f5a7a3e28fe6b749abf2c41

    • SHA256

      dce0615343be09952ae95ad4242caf38121f0528386aab158833b27421f54f73

    • SHA512

      9752eec07c49f1b01886992a7d5f4b116cfee57e112313461bf2c8b18f515af6ea8fdcb6c2a5c1e971e2401a24d6f9324041a056836df90a2d6eb8a9f2374c98

    • SSDEEP

      24576:5WcpUOCtGUsm7Oi4MZRx5h6UjyDiFA0rSVj6AZu:T6OCtFsm7GMnHjSNjLu

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks