General

  • Target

    7c34f95770a5c8a036fbccba6db1816159e9ec6548e6afaadafff610fcf6cdce

  • Size

    9KB

  • Sample

    240622-r7bm2ssbrd

  • MD5

    cc79b215f87cc6cdca64edf9b28074a5

  • SHA1

    ede77061445292b6d3d4238444ca6f6627d97f82

  • SHA256

    7c34f95770a5c8a036fbccba6db1816159e9ec6548e6afaadafff610fcf6cdce

  • SHA512

    87912217d6ccbe65d35a0910aefd40d66360f4ec6eaaf6301b9706b955b4df8540ead354fa71903bdcb9b5ca5412fa8bb4a118471924c136a3b3d87dd963d2a1

  • SSDEEP

    192:7QqzPsOQrXx6gjjOCK7E5pz6rJoZgGZIgV:7Qlrh6Kju7mOGu

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://110.40.195.188:8088/hH6v

Attributes
  • headers User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.0; Trident/5.0)

Targets

    • Target

      7c34f95770a5c8a036fbccba6db1816159e9ec6548e6afaadafff610fcf6cdce

    • Size

      9KB

    • MD5

      cc79b215f87cc6cdca64edf9b28074a5

    • SHA1

      ede77061445292b6d3d4238444ca6f6627d97f82

    • SHA256

      7c34f95770a5c8a036fbccba6db1816159e9ec6548e6afaadafff610fcf6cdce

    • SHA512

      87912217d6ccbe65d35a0910aefd40d66360f4ec6eaaf6301b9706b955b4df8540ead354fa71903bdcb9b5ca5412fa8bb4a118471924c136a3b3d87dd963d2a1

    • SSDEEP

      192:7QqzPsOQrXx6gjjOCK7E5pz6rJoZgGZIgV:7Qlrh6Kju7mOGu

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks