Overview

overview

10

Static

static

3

042b1a44ff...8a.exe

windows7-x64

10

042b1a44ff...8a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    042b1a44ffa0338a16bc1ca68491fda904b59a52233df20f2965d9d87630ca8a

  • Size

    72KB

  • Sample

    240513-wvnjasgd8z

  • MD5

    6866f5174d1d3a4fc2d82bd36c32b883

  • SHA1

    0ebfcda6ffe43478bb2591283009f0684b5285f1

  • SHA256

    042b1a44ffa0338a16bc1ca68491fda904b59a52233df20f2965d9d87630ca8a

  • SHA512

    6448113bae3904bcfd68977825a363c4503da4134f123c83ad872fe5e3d0a6d7e09a4dfb2d77788bc0d7ddde8c2438d78d04bc84e259c59e067e482504400cb2

  • SSDEEP

    1536:ICe119vKhLbJd7pbmdMyJYWoMb+KR0Nc8QsJq39:MMXJDidCe0Nc8QsC9

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

13.201.13.42:44171

Targets

    • Target

      042b1a44ffa0338a16bc1ca68491fda904b59a52233df20f2965d9d87630ca8a

    • Size

      72KB

    • MD5

      6866f5174d1d3a4fc2d82bd36c32b883

    • SHA1

      0ebfcda6ffe43478bb2591283009f0684b5285f1

    • SHA256

      042b1a44ffa0338a16bc1ca68491fda904b59a52233df20f2965d9d87630ca8a

    • SHA512

      6448113bae3904bcfd68977825a363c4503da4134f123c83ad872fe5e3d0a6d7e09a4dfb2d77788bc0d7ddde8c2438d78d04bc84e259c59e067e482504400cb2

    • SSDEEP

      1536:ICe119vKhLbJd7pbmdMyJYWoMb+KR0Nc8QsJq39:MMXJDidCe0Nc8QsC9

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks