metasploit | b558c4e6cde7959b7b6bcf71debc00651259370edf93d014a53a4f1b90805e5a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Powerfull.exe
Size

4.1MB
Sample

230808-nvbkqscc26
MD5

c35e74730d91ac804079c955f127e1c1
SHA1

c73ce2b3af36077c2b704a3a53e46d0e19a66c93
SHA256

b558c4e6cde7959b7b6bcf71debc00651259370edf93d014a53a4f1b90805e5a
SHA512

480dbdaa6ecb1cdd6293e278135e83fe95048fe3352ced700112b8f580fa2b7b37ece7b5bbd004ee34abe470feae6afd98dc51b888d79a47fcf74c4a8866629c
SSDEEP

98304:97atV7GE2LypXvuLg23wW1VtIAdVBey4XCn:YeBm5w3wW1jADXm

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

173.212.219.45:5656

Targets

- Target
  
  Powerfull.exe
- Size
  
  4.1MB
- MD5
  
  c35e74730d91ac804079c955f127e1c1
- SHA1
  
  c73ce2b3af36077c2b704a3a53e46d0e19a66c93
- SHA256
  
  b558c4e6cde7959b7b6bcf71debc00651259370edf93d014a53a4f1b90805e5a
- SHA512
  
  480dbdaa6ecb1cdd6293e278135e83fe95048fe3352ced700112b8f580fa2b7b37ece7b5bbd004ee34abe470feae6afd98dc51b888d79a47fcf74c4a8866629c
- SSDEEP
  
  98304:97atV7GE2LypXvuLg23wW1VtIAdVBey4XCn:YeBm5w3wW1jADXm
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan