metasploit | 636dc49e19b8bbdbe820aae9b6c715bf3b061921e1bde030827e809b703f889b | Triage

Sharing

General

Target

2024-11-28_7b0b84dd742bd56a3454aff2237e8e7e_ryuk
Size

1.6MB
Sample

241128-cagqgawmdm
MD5

7b0b84dd742bd56a3454aff2237e8e7e
SHA1

2a371fa31bf79fdebc61ec52d0dcca8273e167d5
SHA256

636dc49e19b8bbdbe820aae9b6c715bf3b061921e1bde030827e809b703f889b
SHA512

e17a25dd47f4e31b5ba52e112d1fc87256bcb2c8af40937a276be12274d05e5ad36d0e367d4d4d56ecfa7dc3a72b5ee9c778e92029c29a01e82d3b849742b6d2
SSDEEP

49152:VgulzSKAE7ZbUbk0PqZVdPKCUUiUyW+ekBeZmn:VtwpUha

Score

10^/10

metasploit

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

10.9.114.25:4444

Targets

- Target
  
  2024-11-28_7b0b84dd742bd56a3454aff2237e8e7e_ryuk
- Size
  
  1.6MB
- MD5
  
  7b0b84dd742bd56a3454aff2237e8e7e
- SHA1
  
  2a371fa31bf79fdebc61ec52d0dcca8273e167d5
- SHA256
  
  636dc49e19b8bbdbe820aae9b6c715bf3b061921e1bde030827e809b703f889b
- SHA512
  
  e17a25dd47f4e31b5ba52e112d1fc87256bcb2c8af40937a276be12274d05e5ad36d0e367d4d4d56ecfa7dc3a72b5ee9c778e92029c29a01e82d3b849742b6d2
- SSDEEP
  
  49152:VgulzSKAE7ZbUbk0PqZVdPKCUUiUyW+ekBeZmn:VtwpUha
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2