General

  • Target

    4d274f63b37786a6a049c0a18296ae55ab44ea9201d804c418ab12286ea9aba5

  • Size

    14KB

  • Sample

    240706-1dpr9atdrj

  • MD5

    0e2c6022fe56f6bb0adfd7ebb307ea46

  • SHA1

    bb4bd40cb62f3614ba3536063abe7ddfe5e1808e

  • SHA256

    4d274f63b37786a6a049c0a18296ae55ab44ea9201d804c418ab12286ea9aba5

  • SHA512

    9e3a9098109a798db7e1a914ead005583dc0196d98b865c72a19d13decf5b3ece8432ca889b7628ba0f538499159712777239dabda6c89120149a64d385a1f5c

  • SSDEEP

    192:ApH+DgGK83SxHn2OQ/dmBI4KBfTgir+xz5ukjbqUqV/Qjo7AGa:Ah+kGKqbOCdWIVBff+xz5LfCXAn

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://104.168.50.149:8088/ZPkZbQmXmYYXJDvlHDxVTeEJZuPtzTur

Attributes
  • headers User-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko

Targets

    • Target

      4d274f63b37786a6a049c0a18296ae55ab44ea9201d804c418ab12286ea9aba5

    • Size

      14KB

    • MD5

      0e2c6022fe56f6bb0adfd7ebb307ea46

    • SHA1

      bb4bd40cb62f3614ba3536063abe7ddfe5e1808e

    • SHA256

      4d274f63b37786a6a049c0a18296ae55ab44ea9201d804c418ab12286ea9aba5

    • SHA512

      9e3a9098109a798db7e1a914ead005583dc0196d98b865c72a19d13decf5b3ece8432ca889b7628ba0f538499159712777239dabda6c89120149a64d385a1f5c

    • SSDEEP

      192:ApH+DgGK83SxHn2OQ/dmBI4KBfTgir+xz5ukjbqUqV/Qjo7AGa:Ah+kGKqbOCdWIVBff+xz5LfCXAn

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks