metasploit | 36fa7843cfd03daa4f2cccdc464614ef2ead795bc8e7d0cac501dabdc2fad80b | Triage

Sharing

General

Target

back.exe
Size

72KB
Sample

230818-sde9tacd9x
MD5

d761af338789f072b0b33c8e26590f47
SHA1

679b89b72b14eb68a516366b04107134b283bacd
SHA256

36fa7843cfd03daa4f2cccdc464614ef2ead795bc8e7d0cac501dabdc2fad80b
SHA512

7174a3591c27ebde26889f58a33f414086e53300b42ee1c74dbd4f4f5c53d33d528a202e08c7811130ad0f250a2c7bee72b8d57fd8f3b2e5dc073beff81970b5
SSDEEP

1536:IBoKLy5zT+jZi9WNhJ3W7ZxTQwEUdTMb+KR0Nc8QsJq39:KoKLxZqeJIZxvpe0Nc8QsC9

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.45.230:14333

Targets

- Target
  
  back.exe
- Size
  
  72KB
- MD5
  
  d761af338789f072b0b33c8e26590f47
- SHA1
  
  679b89b72b14eb68a516366b04107134b283bacd
- SHA256
  
  36fa7843cfd03daa4f2cccdc464614ef2ead795bc8e7d0cac501dabdc2fad80b
- SHA512
  
  7174a3591c27ebde26889f58a33f414086e53300b42ee1c74dbd4f4f5c53d33d528a202e08c7811130ad0f250a2c7bee72b8d57fd8f3b2e5dc073beff81970b5
- SSDEEP
  
  1536:IBoKLy5zT+jZi9WNhJ3W7ZxTQwEUdTMb+KR0Nc8QsJq39:KoKLxZqeJIZxvpe0Nc8QsC9
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan