metasploit | d47b65b49c7bf5486ba15bcee612e70edd0c65b84e7d60d70d0a9527ab1ccc50 | Triage

Sharing

General

Target

d47b65b49c7bf5486ba15bcee612e70edd0c65b84e7d60d70d0a9527ab1ccc50
Size

75KB
Sample

220919-q3znmsbdh7
MD5

b9e812783cdf77e58b8757079bd95e83
SHA1

4ba6248d78c566a22db5f45a4ee5896eac3116a3
SHA256

d47b65b49c7bf5486ba15bcee612e70edd0c65b84e7d60d70d0a9527ab1ccc50
SHA512

3b643dece8cfe394dad79ef71c5b9e48682a3d53e2909557bddac4350272b24ea472668b1dea0009ae5430cec77055e137159d312cc75b802d148247868b434b
SSDEEP

1536:xCe8uuXxp4vBt1mcbaxSdnVpvXp0Phe25WZ4Eme/ZRZF+q:WxqvVbaMXAhe2sKCFF/

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/call4_dword_xor

Targets

- Target
  
  d47b65b49c7bf5486ba15bcee612e70edd0c65b84e7d60d70d0a9527ab1ccc50
- Size
  
  75KB
- MD5
  
  b9e812783cdf77e58b8757079bd95e83
- SHA1
  
  4ba6248d78c566a22db5f45a4ee5896eac3116a3
- SHA256
  
  d47b65b49c7bf5486ba15bcee612e70edd0c65b84e7d60d70d0a9527ab1ccc50
- SHA512
  
  3b643dece8cfe394dad79ef71c5b9e48682a3d53e2909557bddac4350272b24ea472668b1dea0009ae5430cec77055e137159d312cc75b802d148247868b434b
- SSDEEP
  
  1536:xCe8uuXxp4vBt1mcbaxSdnVpvXp0Phe25WZ4Eme/ZRZF+q:WxqvVbaMXAhe2sKCFF/
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan