metasploit | f828ae4ee43d30975395423cd632c27f13e50139c94635394e685117b05c4ef5 | Triage

Submit
Reports

Overview

overview

Static

static

8

f828ae4ee4...f5.exe

windows7-x64

f828ae4ee4...f5.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

f828ae4ee43d30975395423cd632c27f13e50139c94635394e685117b05c4ef5
Size

392KB
Sample

221205-wy97gade77
MD5

e03eef0550293f7a78f2cf203b8753fe
SHA1

23f72e30a624d8432efd3a60d98db70eb0e2258b
SHA256

f828ae4ee43d30975395423cd632c27f13e50139c94635394e685117b05c4ef5
SHA512

cdfd2443a9604bebf8d385bddbe8da75342eacd40c8b5f4f9f09479aefcc964fcf5af27fda0fa2508329c50fd00aa809d88a36708b2f357d0bbc5b0a3a0b6c1d
SSDEEP

12288:HOMqVDw6DY8q1dTdxGmnOce2dyzCTJtfhnl:HkPE8cdTH7fvl

Score

10^/10

metasploit backdoor trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f828ae4ee43d30975395423cd632c27f13e50139c94635394e685117b05c4ef5.exe

Resource

win7-20220812-en

metasploit backdoor trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

f828ae4ee43d30975395423cd632c27f13e50139c94635394e685117b05c4ef5.exe

Resource

win10v2004-20221111-en

metasploit backdoor trojan upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

metasploit

Version

encoder/call4_dword_xor

Targets

- Target
  
  f828ae4ee43d30975395423cd632c27f13e50139c94635394e685117b05c4ef5
- Size
  
  392KB
- MD5
  
  e03eef0550293f7a78f2cf203b8753fe
- SHA1
  
  23f72e30a624d8432efd3a60d98db70eb0e2258b
- SHA256
  
  f828ae4ee43d30975395423cd632c27f13e50139c94635394e685117b05c4ef5
- SHA512
  
  cdfd2443a9604bebf8d385bddbe8da75342eacd40c8b5f4f9f09479aefcc964fcf5af27fda0fa2508329c50fd00aa809d88a36708b2f357d0bbc5b0a3a0b6c1d
- SSDEEP
  
  12288:HOMqVDw6DY8q1dTdxGmnOce2dyzCTJtfhnl:HkPE8cdTH7fvl
Score

10^/10

metasploit backdoor trojan upx
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojanupx

behavioral2

metasploitbackdoortrojanupx

© 2018-2025

Terms | Privacy