metasploit | 706044474110e19a35fca6e3dbd17398f60626904b81cc0e902595ddd7a4eba9 | Triage

Sharing

General

Target

706044474110e19a35fca6e3dbd17398f60626904b81cc0e902595ddd7a4eba9
Size

2.8MB
Sample

241124-n6zfyavmcm
MD5

16bc0130712a357318f4502ab62aa6c4
SHA1

90ed3cd4d0e5946dd8c341da91370a2cec59f761
SHA256

706044474110e19a35fca6e3dbd17398f60626904b81cc0e902595ddd7a4eba9
SHA512

a1062bac18f98d097537bb04f502564be6d8c415ff7520b8ec9380dbbc4a8d5550686526def554d4a5f0e895e7a0c00ea720ec741fe03ef9f740ad242590d233
SSDEEP

49152:6k/qZlHl9hLeDYFSU3CtWioYD1hShHCsnPGAV202DVU8dXX:N0HGDYYWdHCsPGAVI

Score

10^/10

metasploit discovery

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://192.168.137.133:666/VSlG

Attributes

headers User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; BTRS125526)

Targets

- Target
  
  706044474110e19a35fca6e3dbd17398f60626904b81cc0e902595ddd7a4eba9
- Size
  
  2.8MB
- MD5
  
  16bc0130712a357318f4502ab62aa6c4
- SHA1
  
  90ed3cd4d0e5946dd8c341da91370a2cec59f761
- SHA256
  
  706044474110e19a35fca6e3dbd17398f60626904b81cc0e902595ddd7a4eba9
- SHA512
  
  a1062bac18f98d097537bb04f502564be6d8c415ff7520b8ec9380dbbc4a8d5550686526def554d4a5f0e895e7a0c00ea720ec741fe03ef9f740ad242590d233
- SSDEEP
  
  49152:6k/qZlHl9hLeDYFSU3CtWioYD1hShHCsnPGAV202DVU8dXX:N0HGDYYWdHCsPGAVI
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2