Overview

overview

10

Static

static

10

9f5f03e6cb...3N.exe

windows7-x64

10

9f5f03e6cb...3N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9f5f03e6cb442964512f05fe5cb14311ee61521a4c0e2eeefde72da65e14f7d3N.exe

  • Size

    16KB

  • Sample

    240926-dfjbxswgma

  • MD5

    42f67963f4a1c3d9efce5e3072a53870

  • SHA1

    5a92b439be7763b906cbb03bd13f9622508bdf35

  • SHA256

    9f5f03e6cb442964512f05fe5cb14311ee61521a4c0e2eeefde72da65e14f7d3

  • SHA512

    1d542b2b6e7059637e8737d85348101d8dd628b43e2903468498c13690847d8f7497bd69d7ebf4e3a89926ebbca8cbf6dccd81a5f601a6e3f3fe853cc5dcbef1

  • SSDEEP

    192:0+gVQCeXvavXwenQHjHxogc86j5l/yRWPF7qarHVw3UqISiQBPHLm+WR:bgcv5DaRlnFWgVGUqIMqTR

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

192.168.1.13:5555

Targets

    • Target

      9f5f03e6cb442964512f05fe5cb14311ee61521a4c0e2eeefde72da65e14f7d3N.exe

    • Size

      16KB

    • MD5

      42f67963f4a1c3d9efce5e3072a53870

    • SHA1

      5a92b439be7763b906cbb03bd13f9622508bdf35

    • SHA256

      9f5f03e6cb442964512f05fe5cb14311ee61521a4c0e2eeefde72da65e14f7d3

    • SHA512

      1d542b2b6e7059637e8737d85348101d8dd628b43e2903468498c13690847d8f7497bd69d7ebf4e3a89926ebbca8cbf6dccd81a5f601a6e3f3fe853cc5dcbef1

    • SSDEEP

      192:0+gVQCeXvavXwenQHjHxogc86j5l/yRWPF7qarHVw3UqISiQBPHLm+WR:bgcv5DaRlnFWgVGUqIMqTR

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks