Overview

overview

10

Static

static

3

18d65ea056...8a.exe

windows7-x64

10

18d65ea056...8a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    18d65ea056052d113cf0cc36fca38edcfb895c31156432d2891b7654d312268a

  • Size

    72KB

  • Sample

    240422-xyntxafa7w

  • MD5

    ae728aa77a9424fbb4ee9e6b400e6942

  • SHA1

    90c39cfede102213672e822b0447ee56b86829a3

  • SHA256

    18d65ea056052d113cf0cc36fca38edcfb895c31156432d2891b7654d312268a

  • SHA512

    83371aee8abb31b8b353e216620a82ade6c93ccf5f1b91d2f4a70a4fcca67e8d34ebc2fdef24c8b80e8fa8b1ce19b154578952f88f22de1bf478c0483d309e05

  • SSDEEP

    1536:Iw5NR6vRqW7Y9AgOfgbudVIxPiWGNDW2M0Mb+KR0Nc8QsJq39:jHGqS8AgMMS6xPzGc2/e0Nc8QsC9

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

163.177.33.148:60462

Targets

    • Target

      18d65ea056052d113cf0cc36fca38edcfb895c31156432d2891b7654d312268a

    • Size

      72KB

    • MD5

      ae728aa77a9424fbb4ee9e6b400e6942

    • SHA1

      90c39cfede102213672e822b0447ee56b86829a3

    • SHA256

      18d65ea056052d113cf0cc36fca38edcfb895c31156432d2891b7654d312268a

    • SHA512

      83371aee8abb31b8b353e216620a82ade6c93ccf5f1b91d2f4a70a4fcca67e8d34ebc2fdef24c8b80e8fa8b1ce19b154578952f88f22de1bf478c0483d309e05

    • SSDEEP

      1536:Iw5NR6vRqW7Y9AgOfgbudVIxPiWGNDW2M0Mb+KR0Nc8QsJq39:jHGqS8AgMMS6xPzGc2/e0Nc8QsC9

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks