General

  • Target

    4a9c385927776862eac93f8d6d5cb112a7157d486e7375dbccda87620f28e517

  • Size

    100KB

  • Sample

    240722-qcsgmszbrn

  • MD5

    8b2bc2a25309c2a6ec8f478000f1a4d8

  • SHA1

    ae559f15aa58bb4bdffae7b37bda3daee273a135

  • SHA256

    4a9c385927776862eac93f8d6d5cb112a7157d486e7375dbccda87620f28e517

  • SHA512

    7b462d7f8ea2e9829c42082986dba965343f966e2eb5307f747316adf7e53b5f46e2fb005261a561a90914338bd3a8c2f2d16fddfe95b76ee13c746daff82473

  • SSDEEP

    1536:yMtO3qtFi+QUiVFOCtIxf/vMN7BFvPBPlIsR6GsLmfW4v:vqg4v

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.0.9:443

Targets

    • Target

      4a9c385927776862eac93f8d6d5cb112a7157d486e7375dbccda87620f28e517

    • Size

      100KB

    • MD5

      8b2bc2a25309c2a6ec8f478000f1a4d8

    • SHA1

      ae559f15aa58bb4bdffae7b37bda3daee273a135

    • SHA256

      4a9c385927776862eac93f8d6d5cb112a7157d486e7375dbccda87620f28e517

    • SHA512

      7b462d7f8ea2e9829c42082986dba965343f966e2eb5307f747316adf7e53b5f46e2fb005261a561a90914338bd3a8c2f2d16fddfe95b76ee13c746daff82473

    • SSDEEP

      1536:yMtO3qtFi+QUiVFOCtIxf/vMN7BFvPBPlIsR6GsLmfW4v:vqg4v

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks