metasploit | e632e6ec208abad90d2a411865154915158041ecaf71c07a90679e1d1329f7da | Triage

Submit
Reports

Overview

overview

Static

static

3f9c10f923...65.exe

windows7-x64

3f9c10f923...65.exe

windows10-2004-x64

Analysis

max time kernel
105s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20231222-en
resource tags

arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
submitted
25/12/2023, 22:18

Sharing

Copy URL Twitter E-mail

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

3f9c10f923a23a968e52d9c2f8f5dc65.exe

Resource

win7-20231129-en

metasploit backdoor trojan

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

3f9c10f923a23a968e52d9c2f8f5dc65.exe

Resource

win10v2004-20231222-en

metasploit backdoor trojan

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

3f9c10f923a23a968e52d9c2f8f5dc65.exe
Size

72KB
MD5

3f9c10f923a23a968e52d9c2f8f5dc65
SHA1

ba5c07e5ffce58c2f398983e61596f88c74b04cf
SHA256

e632e6ec208abad90d2a411865154915158041ecaf71c07a90679e1d1329f7da
SHA512

2448ff9b14b569a4e8b5eb629aae65aa3cbc9b25d797669b9a27a33373ede058a72a7bfa8f3871837c8b2a81863530ca514a8e1011e29240b8fa6ec7d490b52e
SSDEEP

1536:I++ma3BqiU0kCPKf0rJy+LNbPoNMb+KR0Nc8QsJq39:/+KqJRbwNe0Nc8QsC9

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.137.128:31337

Signatures

MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
trojan backdoor metasploit

Processes

C:\Users\Admin\AppData\Local\Temp\3f9c10f923a23a968e52d9c2f8f5dc65.exe
"C:\Users\Admin\AppData\Local\Temp\3f9c10f923a23a968e52d9c2f8f5dc65.exe"
1⤵
PID:2972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2972-0-0x0000000000570000-0x0000000000571000-memory.dmp

Filesize
4KB

Download

© 2018-2025

Terms | Privacy