metasploit | 96351a154730af2e419240704c58906d4088d5044d931ec1d3b27bd08aabb4f5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.d50a73474a6d7ec0c2bfe3d70b70d080.exe
Size

355KB
Sample

231104-rkefesba9z
MD5

d50a73474a6d7ec0c2bfe3d70b70d080
SHA1

b435c554d7e1866148c7b5ccd416912d5fc8ca05
SHA256

96351a154730af2e419240704c58906d4088d5044d931ec1d3b27bd08aabb4f5
SHA512

9a8a2b7e1a9c67dae3e3341447bb837233bde8fb8addfff2d2748103268b54a9d1133a7f3d0a40b06257f4079fd33e62521f1a7b8727a0e3c62c04ea0869e46f
SSDEEP

6144:vYa5xSIvF68OZGbpYByPT7lyvIcoZQiITSIvF68OZGbpYByPT7lyvIcgJ:vYBIvk8OvByPHly5UQyIvk8OvByPHlyC

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

metasploit_stager

C2

192.168.1.1:4444

Targets

- Target
  
  NEAS.d50a73474a6d7ec0c2bfe3d70b70d080.exe
- Size
  
  355KB
- MD5
  
  d50a73474a6d7ec0c2bfe3d70b70d080
- SHA1
  
  b435c554d7e1866148c7b5ccd416912d5fc8ca05
- SHA256
  
  96351a154730af2e419240704c58906d4088d5044d931ec1d3b27bd08aabb4f5
- SHA512
  
  9a8a2b7e1a9c67dae3e3341447bb837233bde8fb8addfff2d2748103268b54a9d1133a7f3d0a40b06257f4079fd33e62521f1a7b8727a0e3c62c04ea0869e46f
- SSDEEP
  
  6144:vYa5xSIvF68OZGbpYByPT7lyvIcoZQiITSIvF68OZGbpYByPT7lyvIcgJ:vYBIvk8OvByPHly5UQyIvk8OvByPHlyC
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan