metasploit | 565d5e1f67309d3864cb01a29a3b043485f05e55858a04cfcef9a1d35988f797 | Triage

Sharing

General

Target

college.exe
Size

472KB
Sample

220918-tx5t9abea3
MD5

c69f94a227bcd9c6aad0fb47a70206be
SHA1

45c381723f533255e1fe202a8164f27560bb512a
SHA256

565d5e1f67309d3864cb01a29a3b043485f05e55858a04cfcef9a1d35988f797
SHA512

3cae1dd987f28a716472b424f8e3f3b7061386fd5ecc30f3e6c8e5ad5cf80b3ce234272a821bfbe657c8384378605aef0697f85187e6733189d81751965ce7c3
SSDEEP

6144:y61E/QSnxoEMTlXEulocICldtWkbnVMALgQuDLZ8HB:y6ErxJMTtEul8Cldt3bVMtQELZ8HB

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

45.79.121.251:1234

Targets

- Target
  
  college.exe
- Size
  
  472KB
- MD5
  
  c69f94a227bcd9c6aad0fb47a70206be
- SHA1
  
  45c381723f533255e1fe202a8164f27560bb512a
- SHA256
  
  565d5e1f67309d3864cb01a29a3b043485f05e55858a04cfcef9a1d35988f797
- SHA512
  
  3cae1dd987f28a716472b424f8e3f3b7061386fd5ecc30f3e6c8e5ad5cf80b3ce234272a821bfbe657c8384378605aef0697f85187e6733189d81751965ce7c3
- SSDEEP
  
  6144:y61E/QSnxoEMTlXEulocICldtWkbnVMALgQuDLZ8HB:y6ErxJMTtEul8Cldt3bVMtQELZ8HB
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoortrojan