metasploit | f9e787d013851e015d86fc8d4c8651af528fd8055d7afca71a694c3d425848da | Triage

Submit
Reports

Overview

overview

Static

static

3

f9e787d013...da.exe

windows7_x64

f9e787d013...da.exe

windows10_x64

Sharing

General

Target

f9e787d013851e015d86fc8d4c8651af528fd8055d7afca71a694c3d425848da
Size

7.7MB
Sample

211106-c7lexsdcd3
MD5

e3dba864209de581379c3a65ece57860
SHA1

4f8ddab7b6ae0c5b8e6c15d7a5d95041e7f416a7
SHA256

f9e787d013851e015d86fc8d4c8651af528fd8055d7afca71a694c3d425848da
SHA512

c4746115b7c931991c41151f079ea0ceaac151d2d442c2b5c3f0cb695e4b4abe8292d9149649bf7fe151103f242357f0fc982d853fa186584d1fbf953c8de4b8

Score

10^/10

metasploit backdoor pyinstaller trojan

Static task

static1

Behavioral task

behavioral1

Sample

f9e787d013851e015d86fc8d4c8651af528fd8055d7afca71a694c3d425848da.exe

Resource

win7-en-20211104

metasploit backdoor trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

f9e787d013851e015d86fc8d4c8651af528fd8055d7afca71a694c3d425848da.exe

Resource

win10-en-20211014

metasploit backdoor trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

47.94.236.117:6688

Targets

- Target
  
  f9e787d013851e015d86fc8d4c8651af528fd8055d7afca71a694c3d425848da
- Size
  
  7.7MB
- MD5
  
  e3dba864209de581379c3a65ece57860
- SHA1
  
  4f8ddab7b6ae0c5b8e6c15d7a5d95041e7f416a7
- SHA256
  
  f9e787d013851e015d86fc8d4c8651af528fd8055d7afca71a694c3d425848da
- SHA512
  
  c4746115b7c931991c41151f079ea0ceaac151d2d442c2b5c3f0cb695e4b4abe8292d9149649bf7fe151103f242357f0fc982d853fa186584d1fbf953c8de4b8
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan

© 2018-2024

Terms | Privacy