General

  • Target

    3a0ced395b5d4ce8b840dede03695074361bdc5d3f7f8adcc7244d2fb2e5de37

  • Size

    14KB

  • Sample

    240722-mac3dssamd

  • MD5

    7794e8420f48f4acd520b7f05214fb5e

  • SHA1

    f5afcc8d789be079197f9e3f8394f8414f606c16

  • SHA256

    3a0ced395b5d4ce8b840dede03695074361bdc5d3f7f8adcc7244d2fb2e5de37

  • SHA512

    a209ed9541fbbc4a084db2e1ea6ccf906e12a02b075bbe6cf130496abfbd840f309d3464e31e35aa98c17a510999f8b67f2e80b78e83e854a8af1c261d5b6cb6

  • SSDEEP

    192:C3mbPYCfMcrfOIuZmvKQxtzlSIVX6NOEulejDMN1:ZMCfrfQ6tBSINeUN1

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://192.168.72.195:8888/zXDF

Attributes
  • headers User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; UHS)

Targets

    • Target

      3a0ced395b5d4ce8b840dede03695074361bdc5d3f7f8adcc7244d2fb2e5de37

    • Size

      14KB

    • MD5

      7794e8420f48f4acd520b7f05214fb5e

    • SHA1

      f5afcc8d789be079197f9e3f8394f8414f606c16

    • SHA256

      3a0ced395b5d4ce8b840dede03695074361bdc5d3f7f8adcc7244d2fb2e5de37

    • SHA512

      a209ed9541fbbc4a084db2e1ea6ccf906e12a02b075bbe6cf130496abfbd840f309d3464e31e35aa98c17a510999f8b67f2e80b78e83e854a8af1c261d5b6cb6

    • SSDEEP

      192:C3mbPYCfMcrfOIuZmvKQxtzlSIVX6NOEulejDMN1:ZMCfrfQ6tBSINeUN1

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks