metasploit | 3f8061dd370a4638b31edd0bff030e2e8bd8136167b632f76ac0129abf84a057 | Triage

Sharing

General

Target

3f8061dd370a4638b31edd0bff030e2e8bd8136167b632f76ac0129abf84a057
Size

3.1MB
Sample

241123-ngklgsznhq
MD5

e027d1abba537e8a90a14814cfcc886c
SHA1

4b4963a3eabd808b413b48b56b15e846adb91d5f
SHA256

3f8061dd370a4638b31edd0bff030e2e8bd8136167b632f76ac0129abf84a057
SHA512

c79b46cf4f5bdeb1f04766f7350053640b8e853cb56471024961624347f9a1e1f4dc160fc9bccd4c582817d850c8da9350fb0fe0517db0308e578055985e7c23
SSDEEP

49152:P2Ppun36K995p9oHnaWCXYD1QTyhtpf/kLZQdBk1e2VQBwXP:OPp+36CHoHw2htN/hdB8e2R

Score

10^/10

metasploit discovery

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://192.168.137.133:666/VSlG

Attributes

headers User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; BTRS125526)

Targets

- Target
  
  3f8061dd370a4638b31edd0bff030e2e8bd8136167b632f76ac0129abf84a057
- Size
  
  3.1MB
- MD5
  
  e027d1abba537e8a90a14814cfcc886c
- SHA1
  
  4b4963a3eabd808b413b48b56b15e846adb91d5f
- SHA256
  
  3f8061dd370a4638b31edd0bff030e2e8bd8136167b632f76ac0129abf84a057
- SHA512
  
  c79b46cf4f5bdeb1f04766f7350053640b8e853cb56471024961624347f9a1e1f4dc160fc9bccd4c582817d850c8da9350fb0fe0517db0308e578055985e7c23
- SSDEEP
  
  49152:P2Ppun36K995p9oHnaWCXYD1QTyhtpf/kLZQdBk1e2VQBwXP:OPp+36CHoHw2htN/hdB8e2R
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2