General

  • Target

    196500118ca4c1d6fe26d6311a7286217c638069866a7262248b661c42fdc704

  • Size

    3.5MB

  • Sample

    240704-xy7l1swhlg

  • MD5

    9f881778579193889818abe2fff91a4a

  • SHA1

    9c864248db235a46a89ed15d35a536943b3c5fa1

  • SHA256

    196500118ca4c1d6fe26d6311a7286217c638069866a7262248b661c42fdc704

  • SHA512

    e9a87c0894fb139a3ebd78e223f16ce8c6c2f4f021f239eb29cc31d7c6d8716f6345a5515d362975b98b2bd3bd665a8ad4710b66851b08efd7edc4b31942f702

  • SSDEEP

    98304:sR2784xuvNza4gtJkiGPGAccN3JyD5qcDinRK:sRqKvNWZtJkiG+3cik6c

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

10.2.1.187:9090

Targets

    • Target

      196500118ca4c1d6fe26d6311a7286217c638069866a7262248b661c42fdc704

    • Size

      3.5MB

    • MD5

      9f881778579193889818abe2fff91a4a

    • SHA1

      9c864248db235a46a89ed15d35a536943b3c5fa1

    • SHA256

      196500118ca4c1d6fe26d6311a7286217c638069866a7262248b661c42fdc704

    • SHA512

      e9a87c0894fb139a3ebd78e223f16ce8c6c2f4f021f239eb29cc31d7c6d8716f6345a5515d362975b98b2bd3bd665a8ad4710b66851b08efd7edc4b31942f702

    • SSDEEP

      98304:sR2784xuvNza4gtJkiGPGAccN3JyD5qcDinRK:sRqKvNWZtJkiG+3cik6c

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks