metasploit | e65859d18047e2f4a37d4dfc0bbf52c91eab2de03336ec9bfdd1b28fc4404874 | Triage

Sharing

General

Target

3cd73cef386d459c94ad333d9afbdd21.exe
Size

320KB
Sample

240106-mfjr5adghm
MD5

3cd73cef386d459c94ad333d9afbdd21
SHA1

2cba9cf96baa6a47494e9d38e3ff9645b9e6e2bc
SHA256

e65859d18047e2f4a37d4dfc0bbf52c91eab2de03336ec9bfdd1b28fc4404874
SHA512

46ff8cc57b90d42754056b3d3f1bc5bcbcae10b8134f66d49dcff4c281f242a8860fc2427af488525fb0bf51494259527ac9bc37ba0d17d72372c18e8e202723
SSDEEP

6144:LoYkAATvc9J/awIq6k7Et+IvtYcqadxSb6Nl9vX:5QZLyeGcqadxSuNXvX

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

92.253.102.95:4444

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Targets

- Target
  
  3cd73cef386d459c94ad333d9afbdd21.exe
- Size
  
  320KB
- MD5
  
  3cd73cef386d459c94ad333d9afbdd21
- SHA1
  
  2cba9cf96baa6a47494e9d38e3ff9645b9e6e2bc
- SHA256
  
  e65859d18047e2f4a37d4dfc0bbf52c91eab2de03336ec9bfdd1b28fc4404874
- SHA512
  
  46ff8cc57b90d42754056b3d3f1bc5bcbcae10b8134f66d49dcff4c281f242a8860fc2427af488525fb0bf51494259527ac9bc37ba0d17d72372c18e8e202723
- SSDEEP
  
  6144:LoYkAATvc9J/awIq6k7Et+IvtYcqadxSb6Nl9vX:5QZLyeGcqadxSuNXvX
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan