Overview

overview

10

Static

static

3

2eb58b5eec...fd.exe

windows7-x64

10

2eb58b5eec...fd.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2eb58b5eecb7d846b4bfbe1d240d86a18f110573c969e2dc004c89b6ade171fd

  • Size

    4.6MB

  • Sample

    240520-mcs7dsfg6v

  • MD5

    7af59aa45d22e7af2cfe581750c309c8

  • SHA1

    14dab6bd55c4ea06139917c6cad77e8cf4ab06d1

  • SHA256

    2eb58b5eecb7d846b4bfbe1d240d86a18f110573c969e2dc004c89b6ade171fd

  • SHA512

    1e7ba73b657f7422930ce12e8b6fda1b48918d3de4317ddfba15ef33ad560b7d5c44fc973906a56a52c2bdaa81027ed7f1599b5fe042a24f01519d4a01898ad7

  • SSDEEP

    98304:/DZHQcsibw8SPLeTtSQo5o8DERxrfExYz1smfNyzVa8tS6HcBV:LZwcXMHLKyTtx0lIz0t6HGV

Score
10/10
metasploitbackdoorpyinstallertrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

10.13.1.24:5656

Targets

    • Target

      2eb58b5eecb7d846b4bfbe1d240d86a18f110573c969e2dc004c89b6ade171fd

    • Size

      4.6MB

    • MD5

      7af59aa45d22e7af2cfe581750c309c8

    • SHA1

      14dab6bd55c4ea06139917c6cad77e8cf4ab06d1

    • SHA256

      2eb58b5eecb7d846b4bfbe1d240d86a18f110573c969e2dc004c89b6ade171fd

    • SHA512

      1e7ba73b657f7422930ce12e8b6fda1b48918d3de4317ddfba15ef33ad560b7d5c44fc973906a56a52c2bdaa81027ed7f1599b5fe042a24f01519d4a01898ad7

    • SSDEEP

      98304:/DZHQcsibw8SPLeTtSQo5o8DERxrfExYz1smfNyzVa8tS6HcBV:LZwcXMHLKyTtx0lIz0t6HGV

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks