Overview

overview

10

Static

static

10

812adobe_update.exe

windows7-x64

10

812adobe_update.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    812adobe_update.exe

  • Size

    87KB

  • Sample

    250326-pymmvaxks2

  • MD5

    3f16a2de1242fc887a4b955300946b50

  • SHA1

    94262ade0e49262c1f5e1fb4ad8e3b4a22048013

  • SHA256

    41786d15008e2675fbcb8d543647bd6871eeabbb9f4a7f3346aa1f7e786eb7b7

  • SHA512

    c51b7e97ccdd52ead4c303219f3eb172859580c3ddd83dab57134d4cb061a01ccada315f5944110015850c101a8975a9e466a9aa4322120344613f1fd4acc124

  • SSDEEP

    1536:pAJX27T5dgGQEOLwKhZxlAbd7dkMeDmyOvMt0K3uSqGaVpd:p827T5dKw0AxZwSZ0tP3uRp

Score
10/10
metasploitbackdoordiscoverytrojan

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

51.68.213.100:1440

Targets

    • Target

      812adobe_update.exe

    • Size

      87KB

    • MD5

      3f16a2de1242fc887a4b955300946b50

    • SHA1

      94262ade0e49262c1f5e1fb4ad8e3b4a22048013

    • SHA256

      41786d15008e2675fbcb8d543647bd6871eeabbb9f4a7f3346aa1f7e786eb7b7

    • SHA512

      c51b7e97ccdd52ead4c303219f3eb172859580c3ddd83dab57134d4cb061a01ccada315f5944110015850c101a8975a9e466a9aa4322120344613f1fd4acc124

    • SSDEEP

      1536:pAJX27T5dgGQEOLwKhZxlAbd7dkMeDmyOvMt0K3uSqGaVpd:p827T5dKw0AxZwSZ0tP3uRp

    Score
    10/10
    metasploitbackdoordiscoverytrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit

    • Metasploit family

      metasploit
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks