metasploit | 6f6709da08a4ec3aa1e5f0808126b2238e7b2d8a31fb0e98077fee34f94a3829 | Triage

Sharing

General

Target

6f6709da08a4ec3aa1e5f0808126b2238e7b2d8a31fb0e98077fee34f94a3829
Size

217KB
Sample

221129-jwwj3sag52
MD5

916b741a128d37745ae26ce14e2eae36
SHA1

a9ad1b71ca5664b5216ca4b96db045d10ad4c6c1
SHA256

6f6709da08a4ec3aa1e5f0808126b2238e7b2d8a31fb0e98077fee34f94a3829
SHA512

67750f6b5bac3f004fd4e5d90d82ba79739249f858cda1f27554eb7e3410072518376286f6cebd21adbb7ebff8de2e01c4ade676601d13c3435d413ced7c5df6
SSDEEP

3072:9vI4vTBMphzKFHaDjlSYNjPJaJeUaybid5GKb/x+EkDIREhCFeRdvwwI9o:9Q4bu2HaDjPjxaJeU4d5Db/UEkDOFKm

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://192.168.111.162:4444/LImZ

Targets

- Target
  
  6f6709da08a4ec3aa1e5f0808126b2238e7b2d8a31fb0e98077fee34f94a3829
- Size
  
  217KB
- MD5
  
  916b741a128d37745ae26ce14e2eae36
- SHA1
  
  a9ad1b71ca5664b5216ca4b96db045d10ad4c6c1
- SHA256
  
  6f6709da08a4ec3aa1e5f0808126b2238e7b2d8a31fb0e98077fee34f94a3829
- SHA512
  
  67750f6b5bac3f004fd4e5d90d82ba79739249f858cda1f27554eb7e3410072518376286f6cebd21adbb7ebff8de2e01c4ade676601d13c3435d413ced7c5df6
- SSDEEP
  
  3072:9vI4vTBMphzKFHaDjlSYNjPJaJeUaybid5GKb/x+EkDIREhCFeRdvwwI9o:9Q4bu2HaDjPjxaJeU4d5Db/UEkDOFKm
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan