Overview

overview

10

Static

static

3

b8635582d6...fN.exe

windows7-x64

10

b8635582d6...fN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b8635582d627eb3d58cad49a76e789a3dd7e7b4c032cf349df812f02926f65afN.exe

  • Size

    67KB

  • Sample

    241219-k47gzsxrfv

  • MD5

    f7a68bd2adf53c6c7c7454ad9db2f670

  • SHA1

    f8fd076f75ba240437ef03944f6d7737597e8110

  • SHA256

    b8635582d627eb3d58cad49a76e789a3dd7e7b4c032cf349df812f02926f65af

  • SHA512

    c573c46eba4854fb6507ce71a3983730ba63ab7f8572135ebb726d9990665c535a0ad9dfdd515ece64ffd586ace08f85879ad28cfd08facc5a6a64fbd3cc9a5c

  • SSDEEP

    1536:B0urrFP6o90W4XnI0foMJUEbooPRrKKReFX3:prZP6o90WynI0fFJltZrpReFX3

Score
10/10
metasploitbackdoordiscoverytrojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

74.93.68.36:443

Targets

    • Target

      b8635582d627eb3d58cad49a76e789a3dd7e7b4c032cf349df812f02926f65afN.exe

    • Size

      67KB

    • MD5

      f7a68bd2adf53c6c7c7454ad9db2f670

    • SHA1

      f8fd076f75ba240437ef03944f6d7737597e8110

    • SHA256

      b8635582d627eb3d58cad49a76e789a3dd7e7b4c032cf349df812f02926f65af

    • SHA512

      c573c46eba4854fb6507ce71a3983730ba63ab7f8572135ebb726d9990665c535a0ad9dfdd515ece64ffd586ace08f85879ad28cfd08facc5a6a64fbd3cc9a5c

    • SSDEEP

      1536:B0urrFP6o90W4XnI0foMJUEbooPRrKKReFX3:prZP6o90WynI0fFJltZrpReFX3

    Score
    10/10
    metasploitbackdoordiscoverytrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit

    • Metasploit family

      metasploit
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks