metasploit | 11822efcf9cd839d6aeb8274506a794509461504b3155d17e8263dea851cf73d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-01_cce8f7285861dd39389e371117d9c870_mafia
Size

1.6MB
Sample

240105-gjxv9sdfaq
MD5

cce8f7285861dd39389e371117d9c870
SHA1

2c7a731d1615e6ee6a6627c4f0c6faec7e0a5333
SHA256

11822efcf9cd839d6aeb8274506a794509461504b3155d17e8263dea851cf73d
SHA512

8843e9a61247694bcfb72eafbfdb899b69540568e8502a3e7018892e0d872044e23b06288c3446639d4197e3736d6aa13880f61a7b8f53fcbf6561867a0fa63c
SSDEEP

49152:5mVoAe227S4KEOSAvwU1Vr9xL7p/OpSEsARAr4:0Ve2ySWvcVr9xfFEs

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

127.0.0.1:445

Extracted

Family

metasploit

Version

windows/shell_bind_tcp

Targets

- Target
  
  2024-01-01_cce8f7285861dd39389e371117d9c870_mafia
- Size
  
  1.6MB
- MD5
  
  cce8f7285861dd39389e371117d9c870
- SHA1
  
  2c7a731d1615e6ee6a6627c4f0c6faec7e0a5333
- SHA256
  
  11822efcf9cd839d6aeb8274506a794509461504b3155d17e8263dea851cf73d
- SHA512
  
  8843e9a61247694bcfb72eafbfdb899b69540568e8502a3e7018892e0d872044e23b06288c3446639d4197e3736d6aa13880f61a7b8f53fcbf6561867a0fa63c
- SSDEEP
  
  49152:5mVoAe227S4KEOSAvwU1Vr9xL7p/OpSEsARAr4:0Ve2ySWvcVr9xfFEs
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan