General

  • Target

    c28fecfd4d6227d87300800de070dd2cbf01e0f70d515635b127b7513ec25699

  • Size

    74KB

  • Sample

    240621-dp184axaph

  • MD5

    0212f99ce7568caf7056e99498e7dd0a

  • SHA1

    50002a82552ef3db0643f294181773611aca2db2

  • SHA256

    c28fecfd4d6227d87300800de070dd2cbf01e0f70d515635b127b7513ec25699

  • SHA512

    fa2f4cd23bdbabadc6bc133b48a32eb7decf3c77ea97752e5ba0fb162a0a09c563dcc751b00e9dfe1ffaa7a8f26e60b9f9ae71faeb190bf6c6a201a8cc72daed

  • SSDEEP

    1536:xM1CBervj9d9JUhcDriZcrTcwIsWjcdPhYHK:x8xdUhCXJY

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.1.239:2345

Targets

    • Target

      c28fecfd4d6227d87300800de070dd2cbf01e0f70d515635b127b7513ec25699

    • Size

      74KB

    • MD5

      0212f99ce7568caf7056e99498e7dd0a

    • SHA1

      50002a82552ef3db0643f294181773611aca2db2

    • SHA256

      c28fecfd4d6227d87300800de070dd2cbf01e0f70d515635b127b7513ec25699

    • SHA512

      fa2f4cd23bdbabadc6bc133b48a32eb7decf3c77ea97752e5ba0fb162a0a09c563dcc751b00e9dfe1ffaa7a8f26e60b9f9ae71faeb190bf6c6a201a8cc72daed

    • SSDEEP

      1536:xM1CBervj9d9JUhcDriZcrTcwIsWjcdPhYHK:x8xdUhCXJY

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks