metasploit | 1a1a1f95234d0cdd46d9265c7c9e0c6fa2836aecf98608eac0d2c6e1247e4ba8 | Triage

Sharing

General

Target

1a1a1f95234d0cdd46d9265c7c9e0c6fa2836aecf98608eac0d2c6e1247e4ba8
Size

72KB
Sample

220608-eyshzshabn
MD5

1f299506e50a82c1111969d4bf76e7ea
SHA1

9758832ef27dc5b099417f505da7060dd9f7695e
SHA256

1a1a1f95234d0cdd46d9265c7c9e0c6fa2836aecf98608eac0d2c6e1247e4ba8
SHA512

a960f7751d479101ce4d64ac0bbdde1700c7cbeacdd9a6c6f15faaef959a582934cc6053ef2d4fab2c408581a3a477dab02c38d191682b9ca9f894058dd49673

Score

10^/10

metasploit

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/exec

Targets

- Target
  
  1a1a1f95234d0cdd46d9265c7c9e0c6fa2836aecf98608eac0d2c6e1247e4ba8
- Size
  
  72KB
- MD5
  
  1f299506e50a82c1111969d4bf76e7ea
- SHA1
  
  9758832ef27dc5b099417f505da7060dd9f7695e
- SHA256
  
  1a1a1f95234d0cdd46d9265c7c9e0c6fa2836aecf98608eac0d2c6e1247e4ba8
- SHA512
  
  a960f7751d479101ce4d64ac0bbdde1700c7cbeacdd9a6c6f15faaef959a582934cc6053ef2d4fab2c408581a3a477dab02c38d191682b9ca9f894058dd49673
Score

9^/10
- Grants admin privileges
  Uses net.exe to modify the user's privileges.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Account Manipulation

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2