Overview

overview

10

Static

static

10

42bd469334...8e.exe

windows7-x64

10

42bd469334...8e.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    42bd4693345a825b2422ad7eb06b80b037157148291b1fda784806d92213bd8e

  • Size

    1.3MB

  • Sample

    240425-vsk5qach6t

  • MD5

    1fa10fbd5e6ff951aa4e31c572d87760

  • SHA1

    e06d538ce3ddb26452fc59da702a6878659cdeef

  • SHA256

    42bd4693345a825b2422ad7eb06b80b037157148291b1fda784806d92213bd8e

  • SHA512

    d4f7cea14eccefa1a6333b730572affcb35f0442cea05a64adea0702d457aab1557c72393bc6d18069170fdf4680ad420438a2ba1237ca7aa424cec18bcf20d6

  • SSDEEP

    24576:KfRLcVkyEq9DRho1jFP8ltPP01Ws7+wFPEl9ix4fpUzoQDt+egElxdqFWVCGC:UZcCyEq9DRho/ctH01Ws74rA4RUBDHgX

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

106.75.174.5:9889

Targets

    • Target

      42bd4693345a825b2422ad7eb06b80b037157148291b1fda784806d92213bd8e

    • Size

      1.3MB

    • MD5

      1fa10fbd5e6ff951aa4e31c572d87760

    • SHA1

      e06d538ce3ddb26452fc59da702a6878659cdeef

    • SHA256

      42bd4693345a825b2422ad7eb06b80b037157148291b1fda784806d92213bd8e

    • SHA512

      d4f7cea14eccefa1a6333b730572affcb35f0442cea05a64adea0702d457aab1557c72393bc6d18069170fdf4680ad420438a2ba1237ca7aa424cec18bcf20d6

    • SSDEEP

      24576:KfRLcVkyEq9DRho1jFP8ltPP01Ws7+wFPEl9ix4fpUzoQDt+egElxdqFWVCGC:UZcCyEq9DRho/ctH01Ws74rA4RUBDHgX

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks