Overview

overview

10

Static

static

10

807c2dfd9d...bN.exe

windows7-x64

10

807c2dfd9d...bN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    807c2dfd9d98a7e53e7d06e50ca2d2552ffe606514b51d20e8c672beccd6392bN

  • Size

    72KB

  • Sample

    241106-zj2hkazman

  • MD5

    b2a997388e19cc26104f5a2ef64de300

  • SHA1

    ac999867301ab599eec053e165bc0677905c13f4

  • SHA256

    807c2dfd9d98a7e53e7d06e50ca2d2552ffe606514b51d20e8c672beccd6392b

  • SHA512

    50b9e92929b942fa6f5322cdf16cb118698c5b7303059df43368a08ac7792828f94daf587a26fbeda7ef3c148793fc5cd510c1d036e8fde36452919afe23c9c5

  • SSDEEP

    1536:IBnoxJNt3FkD2N3OFsyg8nX2VpCcLbttGMb+KR0Nc8QsJq39:2YfnkiN3dQnX2VplLxtGe0Nc8QsC9

Score
10/10
metasploitbackdoordiscoverytrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.1.100:8080

Targets

    • Target

      807c2dfd9d98a7e53e7d06e50ca2d2552ffe606514b51d20e8c672beccd6392bN

    • Size

      72KB

    • MD5

      b2a997388e19cc26104f5a2ef64de300

    • SHA1

      ac999867301ab599eec053e165bc0677905c13f4

    • SHA256

      807c2dfd9d98a7e53e7d06e50ca2d2552ffe606514b51d20e8c672beccd6392b

    • SHA512

      50b9e92929b942fa6f5322cdf16cb118698c5b7303059df43368a08ac7792828f94daf587a26fbeda7ef3c148793fc5cd510c1d036e8fde36452919afe23c9c5

    • SSDEEP

      1536:IBnoxJNt3FkD2N3OFsyg8nX2VpCcLbttGMb+KR0Nc8QsJq39:2YfnkiN3dQnX2VplLxtGe0Nc8QsC9

    Score
    10/10
    metasploitbackdoordiscoverytrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit

    • Metasploit family

      metasploit
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks