metasploit | 57ebc1be9d52a18a03f1341fe998afa8c54facc3d96c0bf80a201a80741d948a | Triage

Submit
Reports

Overview

overview

Static

static

57ebc1be9d...8a.dll

windows7-x64

57ebc1be9d...8a.dll

windows10-2004-x64

7

Sharing

General

Target

57ebc1be9d52a18a03f1341fe998afa8c54facc3d96c0bf80a201a80741d948a
Size

5KB
Sample

220724-vykfdacefq
MD5

f768a1ec913aea0915bcc20c17896be3
SHA1

a362956664379ff9860a3c56fb1daf6e000220c4
SHA256

57ebc1be9d52a18a03f1341fe998afa8c54facc3d96c0bf80a201a80741d948a
SHA512

9fa8de6d9c4736dd0300e334137d3e60e42860f7b70dd452b35d515b3d7ebca0ef942d3bc65613d6be8e91a4f93c4c58b4e81d99649a9941cfafb46185f6dc9d

Score

10^/10

metasploit backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

57ebc1be9d52a18a03f1341fe998afa8c54facc3d96c0bf80a201a80741d948a.dll

Resource

win7-20220715-en

metasploit backdoor trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

57ebc1be9d52a18a03f1341fe998afa8c54facc3d96c0bf80a201a80741d948a.dll

Resource

win10v2004-20220721-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

metasploit

Version

windows/single_exec

Targets

- Target
  
  57ebc1be9d52a18a03f1341fe998afa8c54facc3d96c0bf80a201a80741d948a
- Size
  
  5KB
- MD5
  
  f768a1ec913aea0915bcc20c17896be3
- SHA1
  
  a362956664379ff9860a3c56fb1daf6e000220c4
- SHA256
  
  57ebc1be9d52a18a03f1341fe998afa8c54facc3d96c0bf80a201a80741d948a
- SHA512
  
  9fa8de6d9c4736dd0300e334137d3e60e42860f7b70dd452b35d515b3d7ebca0ef942d3bc65613d6be8e91a4f93c4c58b4e81d99649a9941cfafb46185f6dc9d
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Use of msiexec (install) with remote resource
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

© 2018-2024

Terms | Privacy