General

  • Target

    d06257477192da6d2ab28347f7dccab6340431682e24ecfff52c21a08fcce3a9

  • Size

    1.4MB

  • Sample

    240618-lmkgkaxgmh

  • MD5

    5e23be2e349dc6f67e89ce6a16660c1d

  • SHA1

    4e167b524fc02dd528f1f432003d9cd7f8ecc34e

  • SHA256

    d06257477192da6d2ab28347f7dccab6340431682e24ecfff52c21a08fcce3a9

  • SHA512

    55dd77ad844395d0d88fa1bd8f44d41180e882ae33182c8ba33d284dce740fa2f95e2bed8d867889430e566abae32b5e4344b661999b662a03da8d4f5eeb7988

  • SSDEEP

    24576:hijtHZ2fLQmC+FJSYdHO5rFZOZ1urZ03rzQAH0uWqRHz10lc7te0zFn:h0mi7qB307qR2l6Dz

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://192.168.126.128:4446/MrCZ

Attributes
  • headers User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; NP09; NP09; MAAU)

Targets

    • Target

      d06257477192da6d2ab28347f7dccab6340431682e24ecfff52c21a08fcce3a9

    • Size

      1.4MB

    • MD5

      5e23be2e349dc6f67e89ce6a16660c1d

    • SHA1

      4e167b524fc02dd528f1f432003d9cd7f8ecc34e

    • SHA256

      d06257477192da6d2ab28347f7dccab6340431682e24ecfff52c21a08fcce3a9

    • SHA512

      55dd77ad844395d0d88fa1bd8f44d41180e882ae33182c8ba33d284dce740fa2f95e2bed8d867889430e566abae32b5e4344b661999b662a03da8d4f5eeb7988

    • SSDEEP

      24576:hijtHZ2fLQmC+FJSYdHO5rFZOZ1urZ03rzQAH0uWqRHz10lc7te0zFn:h0mi7qB307qR2l6Dz

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks