metasploit | 44d42afe017643c11db5a6325a88c79758b3f7cb9b231e3b12312ee7e4c638a5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

44d42afe017643c11db5a6325a88c79758b3f7cb9b231e3b12312ee7e4c638a5
Size

80KB
Sample

221107-jjcw7seeb5
MD5

1f2ca009a055003730608f32059b3b00
SHA1

781088f5e0bbba51bae39fb86ee767b1d32f3122
SHA256

44d42afe017643c11db5a6325a88c79758b3f7cb9b231e3b12312ee7e4c638a5
SHA512

41c387869cec75d0f80a977d905200dae8d5bda05c531acb5f5d30957a9d8d1758d54e501be25edde6565af9797a1812e997b2634c3ae6a45f13b2da63df91af
SSDEEP

1536:416X8VjLLtT2lCVCtFgWa8ae6FvqXM4mOIwcIk:I1HxVCtF08X/QAW

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/call4_dword_xor

Targets

- Target
  
  44d42afe017643c11db5a6325a88c79758b3f7cb9b231e3b12312ee7e4c638a5
- Size
  
  80KB
- MD5
  
  1f2ca009a055003730608f32059b3b00
- SHA1
  
  781088f5e0bbba51bae39fb86ee767b1d32f3122
- SHA256
  
  44d42afe017643c11db5a6325a88c79758b3f7cb9b231e3b12312ee7e4c638a5
- SHA512
  
  41c387869cec75d0f80a977d905200dae8d5bda05c531acb5f5d30957a9d8d1758d54e501be25edde6565af9797a1812e997b2634c3ae6a45f13b2da63df91af
- SSDEEP
  
  1536:416X8VjLLtT2lCVCtFgWa8ae6FvqXM4mOIwcIk:I1HxVCtF08X/QAW
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

metasploitbackdoortrojan