Overview

overview

10

Static

static

10

87cf607d4b...dd.exe

windows7-x64

10

87cf607d4b...dd.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    87cf607d4ba067607778dd0d61f86a681931b6a2864006b34ee892f8a56534dd

  • Size

    1.4MB

  • Sample

    241212-erqe2szpfy

  • MD5

    73dd6267a02812bf0cd839c89cfd7578

  • SHA1

    ab07891f14783c76fe1f2978923db9c20053bdaf

  • SHA256

    87cf607d4ba067607778dd0d61f86a681931b6a2864006b34ee892f8a56534dd

  • SHA512

    add1255ed301084f3e7b39e885dd6e292cda2834f7828d50547642b153ae0380f785c1e33dd197673796eb8b486e7324b1eab4d569717f6b7abac779695d0195

  • SSDEEP

    24576:B7B1iJHJT1DGh9idqu8HoHUp+JUsLauw1iJHJT1DGh9idqu8HoHUp+JUsLat:B7WTQIhGoSsLa2TQIhGoSsLa

Score
10/10
metasploitbackdoordiscoverytrojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

metasploit_stager

C2

10.10.14.8:1234

Targets

    • Target

      87cf607d4ba067607778dd0d61f86a681931b6a2864006b34ee892f8a56534dd

    • Size

      1.4MB

    • MD5

      73dd6267a02812bf0cd839c89cfd7578

    • SHA1

      ab07891f14783c76fe1f2978923db9c20053bdaf

    • SHA256

      87cf607d4ba067607778dd0d61f86a681931b6a2864006b34ee892f8a56534dd

    • SHA512

      add1255ed301084f3e7b39e885dd6e292cda2834f7828d50547642b153ae0380f785c1e33dd197673796eb8b486e7324b1eab4d569717f6b7abac779695d0195

    • SSDEEP

      24576:B7B1iJHJT1DGh9idqu8HoHUp+JUsLauw1iJHJT1DGh9idqu8HoHUp+JUsLat:B7WTQIhGoSsLa2TQIhGoSsLa

    Score
    10/10
    metasploitbackdoordiscoverytrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit

    • Metasploit family

      metasploit
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks