Overview

overview

10

Static

static

3

d5863614de...fb.exe

windows7-x64

7

d5863614de...fb.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d5863614de2ab7bc42971471dee8c3b3ca241dad856810a7a0535264c7e332fb

  • Size

    7.1MB

  • Sample

    241202-nqlj5ssmcs

  • MD5

    c060c57de46c34b4cc0fd3830cbc2456

  • SHA1

    47637a63405ab75209a4b56b8b40ab26d6fc22f9

  • SHA256

    d5863614de2ab7bc42971471dee8c3b3ca241dad856810a7a0535264c7e332fb

  • SHA512

    7b8518ba7e85f5712820a97d541a9721da9b27d00854971bc7afd848faad4926b3827f63cbfb2088937b65534f7eb9d59d594471fe6caa1d908697cfaf0d260b

  • SSDEEP

    196608:bYY1MnNhDfyGz21X5Sp6GemDMPwqofkW2buZRI:MY1gPDfD6pfaMPq0ujI

Score
10/10
metasploitbackdoorpyinstallertrojan

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

124.221.180.206:5556

Targets

    • Target

      d5863614de2ab7bc42971471dee8c3b3ca241dad856810a7a0535264c7e332fb

    • Size

      7.1MB

    • MD5

      c060c57de46c34b4cc0fd3830cbc2456

    • SHA1

      47637a63405ab75209a4b56b8b40ab26d6fc22f9

    • SHA256

      d5863614de2ab7bc42971471dee8c3b3ca241dad856810a7a0535264c7e332fb

    • SHA512

      7b8518ba7e85f5712820a97d541a9721da9b27d00854971bc7afd848faad4926b3827f63cbfb2088937b65534f7eb9d59d594471fe6caa1d908697cfaf0d260b

    • SSDEEP

      196608:bYY1MnNhDfyGz21X5Sp6GemDMPwqofkW2buZRI:MY1gPDfD6pfaMPq0ujI

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit

    • Metasploit family

      metasploit

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks