General

  • Target

    ce2c0123ec026448861d2cd919833c3e3215873de6b26f03aa90a5ad08c0eee2

  • Size

    774KB

  • Sample

    240622-r3qw6swemj

  • MD5

    727b069ad01320c30027fb94873769cb

  • SHA1

    f7ac0ba604b611abef53e88f8564698f3e31b063

  • SHA256

    ce2c0123ec026448861d2cd919833c3e3215873de6b26f03aa90a5ad08c0eee2

  • SHA512

    1982c0283ef27fb3e283460b23e713bb64e1c39068e9007054a1770fe7bdcfb8ebd4e08dbc8d84e240fe759fb62b2046fff3de36d42546511a76bb0ed3f310f6

  • SSDEEP

    24576:70bh/nm+vHkpMIauK4L05K+ZchWhRMOt4vv8Nm:72e+vHkpMIDK/s+wWDt

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

192.168.2.14:9999

Targets

    • Target

      ce2c0123ec026448861d2cd919833c3e3215873de6b26f03aa90a5ad08c0eee2

    • Size

      774KB

    • MD5

      727b069ad01320c30027fb94873769cb

    • SHA1

      f7ac0ba604b611abef53e88f8564698f3e31b063

    • SHA256

      ce2c0123ec026448861d2cd919833c3e3215873de6b26f03aa90a5ad08c0eee2

    • SHA512

      1982c0283ef27fb3e283460b23e713bb64e1c39068e9007054a1770fe7bdcfb8ebd4e08dbc8d84e240fe759fb62b2046fff3de36d42546511a76bb0ed3f310f6

    • SSDEEP

      24576:70bh/nm+vHkpMIauK4L05K+ZchWhRMOt4vv8Nm:72e+vHkpMIDK/s+wWDt

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks