metasploit | ccea670b84eabd7e0cc8ee9315ee35c606b1f5c09f4931c3c544cade22b11098 | Triage

Sharing

General

Target

ccea670b84eabd7e0cc8ee9315ee35c606b1f5c09f4931c3c544cade22b11098
Size

2.5MB
Sample

231117-r3avysab36
MD5

27f075de3f2212de1e81bb9f2283cef1
SHA1

db8e7e7cce12f3686803d6297ebcf380dfbc33de
SHA256

ccea670b84eabd7e0cc8ee9315ee35c606b1f5c09f4931c3c544cade22b11098
SHA512

ba3617f464786d48f6d559b14fa2e3d186c315e7fd3cb523d0bb1eb46b28ce2177eb58373d525242606e2f5a159d44924f4c4add339b165c4e7792757b6a6ded
SSDEEP

49152:dKv83MoXnFv3dcj7q5LsLp3CceMuczXrN83MoXnFv3dcj7q5LsLp3CceMuczaRv:dKv8HXnl3dcj7q5KpyceMuczXx8HXnlT

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

172.24.192.211:777

Targets

- Target
  
  ccea670b84eabd7e0cc8ee9315ee35c606b1f5c09f4931c3c544cade22b11098
- Size
  
  2.5MB
- MD5
  
  27f075de3f2212de1e81bb9f2283cef1
- SHA1
  
  db8e7e7cce12f3686803d6297ebcf380dfbc33de
- SHA256
  
  ccea670b84eabd7e0cc8ee9315ee35c606b1f5c09f4931c3c544cade22b11098
- SHA512
  
  ba3617f464786d48f6d559b14fa2e3d186c315e7fd3cb523d0bb1eb46b28ce2177eb58373d525242606e2f5a159d44924f4c4add339b165c4e7792757b6a6ded
- SSDEEP
  
  49152:dKv83MoXnFv3dcj7q5LsLp3CceMuczXrN83MoXnFv3dcj7q5LsLp3CceMuczaRv:dKv8HXnl3dcj7q5KpyceMuczXx8HXnlT
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan