General

  • Target

    883f7ebf8551bee338da24f9566f7049c0e2537ed2a15db5cb147c1dd8743e37.exe

  • Size

    72KB

  • Sample

    241222-jd5p2azlaq

  • MD5

    b3749c71a8e12cb59324980ded5cf996

  • SHA1

    4087310247584f3cf4580f376400befee73df58d

  • SHA256

    883f7ebf8551bee338da24f9566f7049c0e2537ed2a15db5cb147c1dd8743e37

  • SHA512

    fd5a6405691660a65077778ba8302edacaf4baabdf59cd1c99c54f920251c5d07bf5c25d460ca59dc489d4fbc0c1c0952be736fba13861ee84256939ce670ca3

  • SSDEEP

    1536:IJ/6VO9SK+lN4wZKVsRJTvV8TMb+KR0Nc8QsJq3l:BcwNR4Mse0Nc8QsCl

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

36.155.161.120:46407

Targets

    • Target

      883f7ebf8551bee338da24f9566f7049c0e2537ed2a15db5cb147c1dd8743e37.exe

    • Size

      72KB

    • MD5

      b3749c71a8e12cb59324980ded5cf996

    • SHA1

      4087310247584f3cf4580f376400befee73df58d

    • SHA256

      883f7ebf8551bee338da24f9566f7049c0e2537ed2a15db5cb147c1dd8743e37

    • SHA512

      fd5a6405691660a65077778ba8302edacaf4baabdf59cd1c99c54f920251c5d07bf5c25d460ca59dc489d4fbc0c1c0952be736fba13861ee84256939ce670ca3

    • SSDEEP

      1536:IJ/6VO9SK+lN4wZKVsRJTvV8TMb+KR0Nc8QsJq3l:BcwNR4Mse0Nc8QsCl

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    • Metasploit family

MITRE ATT&CK Enterprise v15

Tasks