General

  • Target

    2210b164da9c0650fb67cce31359a8155a8e9f89ac27441afada51f41616c547

  • Size

    1.9MB

  • Sample

    240722-nax81avgjr

  • MD5

    16ab0a716936916f856177e1f75cbd83

  • SHA1

    4f285cda3adbc5ec933511fd088ca7bad2659e09

  • SHA256

    2210b164da9c0650fb67cce31359a8155a8e9f89ac27441afada51f41616c547

  • SHA512

    3d0fea9293235fb50f5df45d4466cecf605778e6d8963db51826a4e9c2892cde3c5473e00fb21c003f6da8a417d331740c7f0b275a95fdee0148e6c7e8b5b16f

  • SSDEEP

    49152:6EDhHBdvs562LDVdShcSvZ02h75U9FrJCg:6Ed7eFJdSySv62h7OFrJC

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

8.146.206.7:9999

Targets

    • Target

      2210b164da9c0650fb67cce31359a8155a8e9f89ac27441afada51f41616c547

    • Size

      1.9MB

    • MD5

      16ab0a716936916f856177e1f75cbd83

    • SHA1

      4f285cda3adbc5ec933511fd088ca7bad2659e09

    • SHA256

      2210b164da9c0650fb67cce31359a8155a8e9f89ac27441afada51f41616c547

    • SHA512

      3d0fea9293235fb50f5df45d4466cecf605778e6d8963db51826a4e9c2892cde3c5473e00fb21c003f6da8a417d331740c7f0b275a95fdee0148e6c7e8b5b16f

    • SSDEEP

      49152:6EDhHBdvs562LDVdShcSvZ02h75U9FrJCg:6Ed7eFJdSySv62h7OFrJC

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks