Overview

overview

10

Static

static

10

6fe9a5c240...5a.exe

windows7-x64

10

6fe9a5c240...5a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6fe9a5c2400d46a473b38cd073c9976fe175c3b28b43455dba19c8d374f7015a

  • Size

    151KB

  • Sample

    240513-ncfrqsbh2x

  • MD5

    1baff06b03d8a7bffd706e13bec52fb7

  • SHA1

    fab3e941d451237a629123c337d2b87e6ce001d2

  • SHA256

    6fe9a5c2400d46a473b38cd073c9976fe175c3b28b43455dba19c8d374f7015a

  • SHA512

    a211d0942bb5632865b10f9e502d3e92446f4d0e222e61e35cb1ab71c630e731ec719127e38b38f78c6df4775fecace22f8d1e6a0c6cda4c858331c4385055b1

  • SSDEEP

    3072:z8vbzyQ6Y1YXrbNK+3FNxacPEMkY0RQAiTWa20:zszAXNK+3FVKRQNTW

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

192.168.158.128:1543

Targets

    • Target

      6fe9a5c2400d46a473b38cd073c9976fe175c3b28b43455dba19c8d374f7015a

    • Size

      151KB

    • MD5

      1baff06b03d8a7bffd706e13bec52fb7

    • SHA1

      fab3e941d451237a629123c337d2b87e6ce001d2

    • SHA256

      6fe9a5c2400d46a473b38cd073c9976fe175c3b28b43455dba19c8d374f7015a

    • SHA512

      a211d0942bb5632865b10f9e502d3e92446f4d0e222e61e35cb1ab71c630e731ec719127e38b38f78c6df4775fecace22f8d1e6a0c6cda4c858331c4385055b1

    • SSDEEP

      3072:z8vbzyQ6Y1YXrbNK+3FNxacPEMkY0RQAiTWa20:zszAXNK+3FVKRQNTW

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks