General

  • Target

    d71d3ec4f86dd6b0f5b9adf963ebacacd98ec6ba67c77bedda7d05d8f8911df4

  • Size

    14KB

  • Sample

    240619-lhwn2asdrj

  • MD5

    7157d1ad9c82bdc355dd904b8b31bcd2

  • SHA1

    f6323b689d096e5a64681de88c863657e58bce10

  • SHA256

    d71d3ec4f86dd6b0f5b9adf963ebacacd98ec6ba67c77bedda7d05d8f8911df4

  • SHA512

    8f861d49e82d4445670cc6382cebae17c23356f1bc4dc04dc122b68e4a0d45a5264d05f1a7afc94ebce234b5830832635cc0661eaff6daa779c755bdbb730545

  • SSDEEP

    192:B3mbPYCfMcrfOIuZmvKQxtzlSIVX6NOx5f2cUZNejDMN1:IMCfrfQ6tBSIsh7eUN1

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://10.2.21.128:8848/aDiN

Attributes
  • headers User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0)

Targets

    • Target

      d71d3ec4f86dd6b0f5b9adf963ebacacd98ec6ba67c77bedda7d05d8f8911df4

    • Size

      14KB

    • MD5

      7157d1ad9c82bdc355dd904b8b31bcd2

    • SHA1

      f6323b689d096e5a64681de88c863657e58bce10

    • SHA256

      d71d3ec4f86dd6b0f5b9adf963ebacacd98ec6ba67c77bedda7d05d8f8911df4

    • SHA512

      8f861d49e82d4445670cc6382cebae17c23356f1bc4dc04dc122b68e4a0d45a5264d05f1a7afc94ebce234b5830832635cc0661eaff6daa779c755bdbb730545

    • SSDEEP

      192:B3mbPYCfMcrfOIuZmvKQxtzlSIVX6NOx5f2cUZNejDMN1:IMCfrfQ6tBSIsh7eUN1

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks