General

  • Target

    5665dd172216157569135b452cd3386f416a3342f82ae62b907b2526289f0c9c

  • Size

    72KB

  • Sample

    240704-phfvcsyfmf

  • MD5

    26fdd34ee3024af05974634ecc715482

  • SHA1

    bc4b7f90fc93c7b811fde8498cffb3f4f8d06859

  • SHA256

    5665dd172216157569135b452cd3386f416a3342f82ae62b907b2526289f0c9c

  • SHA512

    287e657e6f5e25f96a31fe08e2e51b132ee5bbee610122693c3adedd6cbfd004d597fd8e82e1bb77820f33d7cf8487b39a8133f5b43814b059e9dde554c07064

  • SSDEEP

    1536:Ij38ujeXm3DWn7TqPV4wlqMzC0LwK8RjsqIhMb+KR0Nc8QsJq39:qsIeXJ7TqPRlLwK8lOhe0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

146.235.244.191:4444

Targets

    • Target

      5665dd172216157569135b452cd3386f416a3342f82ae62b907b2526289f0c9c

    • Size

      72KB

    • MD5

      26fdd34ee3024af05974634ecc715482

    • SHA1

      bc4b7f90fc93c7b811fde8498cffb3f4f8d06859

    • SHA256

      5665dd172216157569135b452cd3386f416a3342f82ae62b907b2526289f0c9c

    • SHA512

      287e657e6f5e25f96a31fe08e2e51b132ee5bbee610122693c3adedd6cbfd004d597fd8e82e1bb77820f33d7cf8487b39a8133f5b43814b059e9dde554c07064

    • SSDEEP

      1536:Ij38ujeXm3DWn7TqPV4wlqMzC0LwK8RjsqIhMb+KR0Nc8QsJq39:qsIeXJ7TqPRlLwK8lOhe0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks