Overview

overview

10

Static

static

3

4a32c7476c...71.exe

windows7-x64

10

4a32c7476c...71.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4a32c7476c7e47a2fdf64a9a8e7acd5d8f8d1605d790a9de024cf6d5637e3c71

  • Size

    14KB

  • Sample

    240519-mghapaeb41

  • MD5

    013850312785e04d5e28d62d6eeaddd5

  • SHA1

    5da1890a5ecbf1b4c989f624d933d20f9f652756

  • SHA256

    4a32c7476c7e47a2fdf64a9a8e7acd5d8f8d1605d790a9de024cf6d5637e3c71

  • SHA512

    f448af10ce00ccdad4e9ce8d6845af61d2985caf431beaf6f1799f486fb4de0fe38f7946fa197a98d48e9879cb8ad518245866cce6f8cb497ac88299a756a227

  • SSDEEP

    192:z3mbPYCfMcrfOIuZmvKQxtzlSIVX6NOZrhejDMN1:aMCfrfQ6tBSIrheUN1

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://43.139.160.164:7080/7xu8

Attributes
  • headers User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; BTRS125526)

Targets

    • Target

      4a32c7476c7e47a2fdf64a9a8e7acd5d8f8d1605d790a9de024cf6d5637e3c71

    • Size

      14KB

    • MD5

      013850312785e04d5e28d62d6eeaddd5

    • SHA1

      5da1890a5ecbf1b4c989f624d933d20f9f652756

    • SHA256

      4a32c7476c7e47a2fdf64a9a8e7acd5d8f8d1605d790a9de024cf6d5637e3c71

    • SHA512

      f448af10ce00ccdad4e9ce8d6845af61d2985caf431beaf6f1799f486fb4de0fe38f7946fa197a98d48e9879cb8ad518245866cce6f8cb497ac88299a756a227

    • SSDEEP

      192:z3mbPYCfMcrfOIuZmvKQxtzlSIVX6NOZrhejDMN1:aMCfrfQ6tBSIrheUN1

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks