General

  • Target

    d6e6575bf08284ac291c10c413b5502489384fc0d615fcf08efaab6fd1d0cd9c

  • Size

    14KB

  • Sample

    240618-ha1fgavfrk

  • MD5

    8af24d348bd81f688dda0dc824949bc3

  • SHA1

    98c5f1adfcd72b038cc81d814e371b62c88e1f40

  • SHA256

    d6e6575bf08284ac291c10c413b5502489384fc0d615fcf08efaab6fd1d0cd9c

  • SHA512

    86a5324515a85108396e3224a96dca4b2de81d691ed43f4d5e287cb2dbb5f2ac6e49f734b576d60cde9b4031330f7a844b17d185570a764c184e645ddbe30734

  • SSDEEP

    192:q3mbPYCfMcrfOIuZmvKQxtzlSIVX6NOFGi6ZflejDMN1:BMCfrfQ6tBSIuZfleUN1

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://172.23.12.150:8443/ArGb

Targets

    • Target

      d6e6575bf08284ac291c10c413b5502489384fc0d615fcf08efaab6fd1d0cd9c

    • Size

      14KB

    • MD5

      8af24d348bd81f688dda0dc824949bc3

    • SHA1

      98c5f1adfcd72b038cc81d814e371b62c88e1f40

    • SHA256

      d6e6575bf08284ac291c10c413b5502489384fc0d615fcf08efaab6fd1d0cd9c

    • SHA512

      86a5324515a85108396e3224a96dca4b2de81d691ed43f4d5e287cb2dbb5f2ac6e49f734b576d60cde9b4031330f7a844b17d185570a764c184e645ddbe30734

    • SSDEEP

      192:q3mbPYCfMcrfOIuZmvKQxtzlSIVX6NOFGi6ZflejDMN1:BMCfrfQ6tBSIuZfleUN1

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks