Overview

overview

10

Static

static

3

tmp_1694527752.exe

windows7-x64

10

tmp_1694527752.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    tmp_1694527752.exe

  • Size

    66KB

  • Sample

    240513-eab64ahf5y

  • MD5

    0ae657ac3ec805132a579971e182f2ca

  • SHA1

    cc2659b86636d18504989d5f56ff35a8047ef41f

  • SHA256

    14dfd63b88d40fc28aee282a6f12db1acc8ddb2a411ef42c056ca322ea5009d4

  • SHA512

    3245fa3374bfdcee7ff668d7629837f5f3634ff2a11f16944efacb1341a3b0275842cfc95d7069ec365c3ad7b12b973812fbdb4eb2e75f5bb5ffd513830141a3

  • SSDEEP

    1536:mDXPXdb6Ep1TxLcupqdg7ERfjM16oF/070:mDftb6c1TxLcuovg16ZI

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

116.196.98.0:2000

Targets

    • Target

      tmp_1694527752.exe

    • Size

      66KB

    • MD5

      0ae657ac3ec805132a579971e182f2ca

    • SHA1

      cc2659b86636d18504989d5f56ff35a8047ef41f

    • SHA256

      14dfd63b88d40fc28aee282a6f12db1acc8ddb2a411ef42c056ca322ea5009d4

    • SHA512

      3245fa3374bfdcee7ff668d7629837f5f3634ff2a11f16944efacb1341a3b0275842cfc95d7069ec365c3ad7b12b973812fbdb4eb2e75f5bb5ffd513830141a3

    • SSDEEP

      1536:mDXPXdb6Ep1TxLcupqdg7ERfjM16oF/070:mDftb6c1TxLcuovg16ZI

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks