General
-
Target
DONOTDOWNLOADBREAKSPC.zip
-
Size
43KB
-
Sample
240502-1ypmzshg82
-
MD5
da2804547ebbaa25a71c5c46a3eb9af8
-
SHA1
06d747f9e4b6633be0d349eba36bf694fdef31c5
-
SHA256
a2bb2313cb1679c12b373ecefdfca72f72a99d0ba014ec73a3eeffe0782391cd
-
SHA512
79b2a9d986339ecf0526b7fd294dbfbea0f06aa1174c65bdebab89709e50c2fb18e9161b48aa4d98c0f85b4cff786eb14f4728154a5c76f368998a96ab99d2b0
-
SSDEEP
768:1III4a72cL6IuTY1jOxSPjmzHqT/0lVTrwVWzJ0Go1nWdspr+MOF8Qy4qlo+lq3s:167RLWDxnzHVvT0EWYkr+9FyDlqmh
Malware Config
Extracted
metasploit
windows/reverse_tcp
147.185.221.19:41570
Targets
-
-
Target
DONOTDOWNLOADBREAKSPC.zip
-
Size
43KB
-
MD5
da2804547ebbaa25a71c5c46a3eb9af8
-
SHA1
06d747f9e4b6633be0d349eba36bf694fdef31c5
-
SHA256
a2bb2313cb1679c12b373ecefdfca72f72a99d0ba014ec73a3eeffe0782391cd
-
SHA512
79b2a9d986339ecf0526b7fd294dbfbea0f06aa1174c65bdebab89709e50c2fb18e9161b48aa4d98c0f85b4cff786eb14f4728154a5c76f368998a96ab99d2b0
-
SSDEEP
768:1III4a72cL6IuTY1jOxSPjmzHqT/0lVTrwVWzJ0Go1nWdspr+MOF8Qy4qlo+lq3s:167RLWDxnzHVvT0EWYkr+9FyDlqmh
Score1/10 -
-
-
Target
EC34VARIANTDONOTDOWNLOADUNLESSNOPCYOURYOU.exe
-
Size
72KB
-
MD5
f7d4c3c70340d1952707a84b1ac8b59a
-
SHA1
f89f8844d94dbe90e115af8d626008df0088889a
-
SHA256
0922246e92694e2a85e56b9064e50cf372976b543d4f93ec750d8f7c01009128
-
SHA512
134f95cdc92753ca063e2b78a8a8403b8a20ae95637f1009559f4351353c15a4bfd053127c37f3b6163826518d65b9bc58c04413888f9420cb98d4a8193e445a
-
SSDEEP
1536:IcOfRjBKMrgEl96SmsUPfiA9zkqVmSFLR7Mb+KR0Nc8QsJq39:TOTX9quwiA9xVXpR7e0Nc8QsC9
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-