metasploit | 207ae6c439d45ec4e2d0a2d200202491208d9a744b902611c291bdaa0ff7150b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

putty_v4.exe
Size

1.4MB
Sample

231029-nvdebshd33
MD5

bf84c277f02474f6191f861ef7b29757
SHA1

c3afec5947ec3dfa5f5e5bfb593d315ac0dd9315
SHA256

207ae6c439d45ec4e2d0a2d200202491208d9a744b902611c291bdaa0ff7150b
SHA512

3acba3037741f53c741f2e589e054965f95d68ed31725b575afad81792c9ca67e705eb92bf08f60f1f152a5623e3d3428fb3b730bc0d300f83c6392daa2d3c8f
SSDEEP

24576:qNbP9SNg9nmKu2HhIYjAY6RTVSTPkSnexozZTQAnTWjYIZTbRFPUN0gLuweI:8TRnU4/FQAqFxfPka

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.45.241:7777

Targets

- Target
  
  putty_v4.exe
- Size
  
  1.4MB
- MD5
  
  bf84c277f02474f6191f861ef7b29757
- SHA1
  
  c3afec5947ec3dfa5f5e5bfb593d315ac0dd9315
- SHA256
  
  207ae6c439d45ec4e2d0a2d200202491208d9a744b902611c291bdaa0ff7150b
- SHA512
  
  3acba3037741f53c741f2e589e054965f95d68ed31725b575afad81792c9ca67e705eb92bf08f60f1f152a5623e3d3428fb3b730bc0d300f83c6392daa2d3c8f
- SSDEEP
  
  24576:qNbP9SNg9nmKu2HhIYjAY6RTVSTPkSnexozZTQAnTWjYIZTbRFPUN0gLuweI:8TRnU4/FQAqFxfPka
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan