Overview

overview

10

Static

static

8

9fec8cc46a...53.doc

windows7-x64

10

9fec8cc46a...53.doc

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9fec8cc46a66a9a89050eb179a9750b22fb982537d3b3d598d79c26d989e3a53

  • Size

    47KB

  • Sample

    240907-18j59aybrq

  • MD5

    4f5ffe8345d494729728f79fa73d87c2

  • SHA1

    34b57d11ec2475339c647c66ae30978293223e0c

  • SHA256

    9fec8cc46a66a9a89050eb179a9750b22fb982537d3b3d598d79c26d989e3a53

  • SHA512

    fcebbbea9fb1f4d3c49007d99aa30a9cc76bdb5c2061d8ffe1300dd028ce58b9d2504f3b3bbfb02e20b94c3f172f497ca5e2e113f83dbdfd11e5eae921146728

  • SSDEEP

    384:GK8iSsqdg1vA9Spjg7h9b+izkdMdFZADB66HENDk7xqR2LR0j/txLNqe:Gn+1o9G4kdKFZSB6GENINc21sLN

Score
10/10
metasploitbackdoordiscoverymacromacro_on_actiontrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_http

C2

http://192.168.1.18:443/CKbhEakxgWu5Krgr3_GWpw9EjA_tz6IEFESWYo8bKZCfIqFC4bn

Targets

    • Target

      9fec8cc46a66a9a89050eb179a9750b22fb982537d3b3d598d79c26d989e3a53

    • Size

      47KB

    • MD5

      4f5ffe8345d494729728f79fa73d87c2

    • SHA1

      34b57d11ec2475339c647c66ae30978293223e0c

    • SHA256

      9fec8cc46a66a9a89050eb179a9750b22fb982537d3b3d598d79c26d989e3a53

    • SHA512

      fcebbbea9fb1f4d3c49007d99aa30a9cc76bdb5c2061d8ffe1300dd028ce58b9d2504f3b3bbfb02e20b94c3f172f497ca5e2e113f83dbdfd11e5eae921146728

    • SSDEEP

      384:GK8iSsqdg1vA9Spjg7h9b+izkdMdFZADB66HENDk7xqR2LR0j/txLNqe:Gn+1o9G4kdKFZSB6GENINc21sLN

    Score
    10/10
    metasploitbackdoordiscoverytrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks