Overview

overview

10

Static

static

10

2a39893b6a...d5.exe

windows7-x64

1

2a39893b6a...d5.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2a39893b6abed4a6bc8509ba4e12cf2d0305a7dab5571054a8c06097fe6f8dd5

  • Size

    1.3MB

  • Sample

    240422-bly88add97

  • MD5

    5d4e62ceea969dea1911ffe639b7602c

  • SHA1

    dc3fea7ef77f77d3ef7787b790815f04bc8260b0

  • SHA256

    2a39893b6abed4a6bc8509ba4e12cf2d0305a7dab5571054a8c06097fe6f8dd5

  • SHA512

    644bf65a4e6e0d34e0e1da83bcedd3f48269cfb76223d669da3b4e63d04f7d39ceac785cb1457ac260bc569121d57715f1457a04f77148b012d6b1301419d077

  • SSDEEP

    12288:4dtvybMdhP6qKZkxxRjAve/nfHQCXU+wZSA5yoUET6cxR+2V0T+ESTo3ujYcnVtC:4d4uMkxx1HzloUEdCkJYQVtI5

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

192.168.4.126:3333

Targets

    • Target

      2a39893b6abed4a6bc8509ba4e12cf2d0305a7dab5571054a8c06097fe6f8dd5

    • Size

      1.3MB

    • MD5

      5d4e62ceea969dea1911ffe639b7602c

    • SHA1

      dc3fea7ef77f77d3ef7787b790815f04bc8260b0

    • SHA256

      2a39893b6abed4a6bc8509ba4e12cf2d0305a7dab5571054a8c06097fe6f8dd5

    • SHA512

      644bf65a4e6e0d34e0e1da83bcedd3f48269cfb76223d669da3b4e63d04f7d39ceac785cb1457ac260bc569121d57715f1457a04f77148b012d6b1301419d077

    • SSDEEP

      12288:4dtvybMdhP6qKZkxxRjAve/nfHQCXU+wZSA5yoUET6cxR+2V0T+ESTo3ujYcnVtC:4d4uMkxx1HzloUEdCkJYQVtI5

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks