metasploit | bfb754fae72d258192978d5572128efa2cb5fda2f2707ceffb04a83bde0065e4 | Triage

Sharing

General

Target

bfb754fae72d258192978d5572128efa2cb5fda2f2707ceffb04a83bde0065e4
Size

235KB
Sample

220510-3al83acfej
MD5

ebc89c8dab7004b77351070a741d41af
SHA1

817cb28a043511af178601d9f06c2d8095468113
SHA256

bfb754fae72d258192978d5572128efa2cb5fda2f2707ceffb04a83bde0065e4
SHA512

1e5308bb15afcbc609104ee2143885a28faaf87a88dc7abf9435adeaf7a55054c2bc4122e4d8e91dbe081381d1b214a2212fdccf9b7f806ad1b51ec641841978

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_http

C2

http://192.168.1.105:4443/SDuFNWMnRYXg5eHkv4hSIguJjH4g8hPF6EvI0TG5ziAWOah8qj7mNqKHOSO3qi8P9YJd3uZReD-fmnZGbV_K1xvi9kf

Targets

- Target
  
  bfb754fae72d258192978d5572128efa2cb5fda2f2707ceffb04a83bde0065e4
- Size
  
  235KB
- MD5
  
  ebc89c8dab7004b77351070a741d41af
- SHA1
  
  817cb28a043511af178601d9f06c2d8095468113
- SHA256
  
  bfb754fae72d258192978d5572128efa2cb5fda2f2707ceffb04a83bde0065e4
- SHA512
  
  1e5308bb15afcbc609104ee2143885a28faaf87a88dc7abf9435adeaf7a55054c2bc4122e4d8e91dbe081381d1b214a2212fdccf9b7f806ad1b51ec641841978
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2