metasploit | a72dfffee582b6f7784c51cdb01dd4fcd42d5f432b150d1d8b2ab1b697958f19 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.11ed49699217dad879318270a6baf230.exe
Size

175KB
Sample

231022-vrqntabd8x
MD5

11ed49699217dad879318270a6baf230
SHA1

4fe46c3b5ddd40bac5e00e3e733bb716efb941ac
SHA256

a72dfffee582b6f7784c51cdb01dd4fcd42d5f432b150d1d8b2ab1b697958f19
SHA512

6896ba053419557b3a096183f415c9adf48d097c242949fe28d80fa6b018346c3a4967be6367ca2df0ef17546de01ab27e00327fecb8ecf2a6b1b2b4e54fbc23
SSDEEP

3072:KUjxzTMlI0frxJLgf7nDVF6PUp1Yo3ICgxgV:KUjxJex5gfzDVlVXgaV

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.8.131:4444

Targets

- Target
  
  NEAS.11ed49699217dad879318270a6baf230.exe
- Size
  
  175KB
- MD5
  
  11ed49699217dad879318270a6baf230
- SHA1
  
  4fe46c3b5ddd40bac5e00e3e733bb716efb941ac
- SHA256
  
  a72dfffee582b6f7784c51cdb01dd4fcd42d5f432b150d1d8b2ab1b697958f19
- SHA512
  
  6896ba053419557b3a096183f415c9adf48d097c242949fe28d80fa6b018346c3a4967be6367ca2df0ef17546de01ab27e00327fecb8ecf2a6b1b2b4e54fbc23
- SSDEEP
  
  3072:KUjxzTMlI0frxJLgf7nDVF6PUp1Yo3ICgxgV:KUjxJex5gfzDVlVXgaV
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan