metasploit | cd57bba21ef5bd4762140318406aad21a30070f97711c382b41e0a7ab3bf96ed | Triage

Sharing

General

Target

artifact.exe
Size

14KB
Sample

231013-e3w2zaea2x
MD5

89408428a017ee9495c7bce72e0f1d7d
SHA1

61b14efddc355ced057006f9aeb1780d6dc9c40d
SHA256

cd57bba21ef5bd4762140318406aad21a30070f97711c382b41e0a7ab3bf96ed
SHA512

8a6d1c8cf8f35091bf0549ebf4c97c28e601538e949fc93f20522ca12c9b73f6897b66df638fb0b76c5ad6afb4992a17190cd35cf472d59ea59071fcca683b8c
SSDEEP

192:A/H+DgGK83SxHn2OQ/dmBI4KBfTgir+xzalaNbqUqV/Qjo7AGa:Av+kGKqbOCdWIVBff+xzal6fCXAn

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://121.199.166.71:65441/jquery-3.3.1.slim.min.js

Attributes

headers Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.5 Referer: http://code.jquery.com/ Accept-Encoding: gzip, deflate User-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko

Targets

- Target
  
  artifact.exe
- Size
  
  14KB
- MD5
  
  89408428a017ee9495c7bce72e0f1d7d
- SHA1
  
  61b14efddc355ced057006f9aeb1780d6dc9c40d
- SHA256
  
  cd57bba21ef5bd4762140318406aad21a30070f97711c382b41e0a7ab3bf96ed
- SHA512
  
  8a6d1c8cf8f35091bf0549ebf4c97c28e601538e949fc93f20522ca12c9b73f6897b66df638fb0b76c5ad6afb4992a17190cd35cf472d59ea59071fcca683b8c
- SSDEEP
  
  192:A/H+DgGK83SxHn2OQ/dmBI4KBfTgir+xzalaNbqUqV/Qjo7AGa:Av+kGKqbOCdWIVBff+xzal6fCXAn
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan