Overview

overview

10

Static

static

3

1dddbe35f0...69.exe

windows7-x64

10

1dddbe35f0...69.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1dddbe35f087419bed5effd4ac7b9cacb4be3d6f8239b7650cf81b2a01b2b369.exe

  • Size

    14KB

  • Sample

    240701-bdtzja1elg

  • MD5

    29c4f7618e72214116ae6e7c578a4dc9

  • SHA1

    0e7e98f7705566e1c7a4bd41222d166b18236808

  • SHA256

    1dddbe35f087419bed5effd4ac7b9cacb4be3d6f8239b7650cf81b2a01b2b369

  • SHA512

    42cb857b3906e500bd9498685fc57dc21ce9417efe7fba200ea6010449803962bb8ff7700288f1d524bfcab95ada74ed0cdec3fc08ffe9cd3ee320bc332f9da8

  • SSDEEP

    192:AWH+DgGK83SxHn2OQ/dmBI4KBfTgir+xzK7NRxbqUqV/Qjo7AGa:Ai+kGKqbOCdWIVBff+xz4NRtfCXAn

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://120.78.7.92:8443DogCsDogCs.js

Targets

    • Target

      1dddbe35f087419bed5effd4ac7b9cacb4be3d6f8239b7650cf81b2a01b2b369.exe

    • Size

      14KB

    • MD5

      29c4f7618e72214116ae6e7c578a4dc9

    • SHA1

      0e7e98f7705566e1c7a4bd41222d166b18236808

    • SHA256

      1dddbe35f087419bed5effd4ac7b9cacb4be3d6f8239b7650cf81b2a01b2b369

    • SHA512

      42cb857b3906e500bd9498685fc57dc21ce9417efe7fba200ea6010449803962bb8ff7700288f1d524bfcab95ada74ed0cdec3fc08ffe9cd3ee320bc332f9da8

    • SSDEEP

      192:AWH+DgGK83SxHn2OQ/dmBI4KBfTgir+xzK7NRxbqUqV/Qjo7AGa:Ai+kGKqbOCdWIVBff+xz4NRtfCXAn

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks