metasploit | ee68ff3e23d4ac0d051a1467e774b311560420dd9e4b27a19ee2fbfee6d3c2b0 | Triage

Submit
Reports

Overview

overview

Static

static

class.exe

windows7-x64

class.exe

windows10-2004-x64

Analysis

max time kernel
139s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
11-01-2024 13:29

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

class.exe

Resource

win7-20231215-en

metasploit backdoor trojan

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

class.exe

Resource

win10v2004-20231215-en

metasploit backdoor trojan

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

class.exe
Size

72KB
MD5

80cfde6f1c5345e09380874bce9a69b5
SHA1

727e2d789a5009a3fc48d34ca79d689fc5ef705e
SHA256

ee68ff3e23d4ac0d051a1467e774b311560420dd9e4b27a19ee2fbfee6d3c2b0
SHA512

0d661e1d8d91cb8e01db74682bd18a8b355ac66a01dcd7c969be63e83a51402ccb8202b307587629643837476eb2b4fea0f3f721aea3b384cd2adcda95f6e7a7
SSDEEP

1536:IzIZOmCi3EVg0Mg4eV0he/RvCjUZl0dMb+KR0Nc8QsJq39:SP/Cc9aolBZl4e0Nc8QsC9

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

13.53.177.142:4545

Signatures

MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
trojan backdoor metasploit

Processes

C:\Users\Admin\AppData\Local\Temp\class.exe
"C:\Users\Admin\AppData\Local\Temp\class.exe"
1⤵
PID:4400

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4400-0-0x0000000000560000-0x0000000000561000-memory.dmp

Filesize
4KB

Download

© 2018-2025

Terms | Privacy