metasploit | 0ef8330a6cf88ae8f244cb9838b4b91c24c3eb7bd281647d8b5c6653d82d8b47 | Triage

Sharing

General

Target

登录器.exe
Size

1.8MB
Sample

240329-nw4mxafh9v
MD5

2301e95e1b899d97b7ae33053d478785
SHA1

cb12c16c8152264fb051dd76d67e098c099b8ce9
SHA256

0ef8330a6cf88ae8f244cb9838b4b91c24c3eb7bd281647d8b5c6653d82d8b47
SHA512

81f9f420e6b51a101a27fd36ff511a7321571b987958c37b4145db04d9fefc34fa38ac0c35e8c62ce6229808ecadd650c4716cdb35bc5397934bf6538b22170f
SSDEEP

24576:/3vLRdVhZBK8NogWYO09fOGi9J3YiWdCMJ5QxmjwC/hR:/3d5ZQ1dxJIiW0MbQxA

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

1.15.12.73:4567

Targets

- Target
  
  登录器.exe
- Size
  
  1.8MB
- MD5
  
  2301e95e1b899d97b7ae33053d478785
- SHA1
  
  cb12c16c8152264fb051dd76d67e098c099b8ce9
- SHA256
  
  0ef8330a6cf88ae8f244cb9838b4b91c24c3eb7bd281647d8b5c6653d82d8b47
- SHA512
  
  81f9f420e6b51a101a27fd36ff511a7321571b987958c37b4145db04d9fefc34fa38ac0c35e8c62ce6229808ecadd650c4716cdb35bc5397934bf6538b22170f
- SSDEEP
  
  24576:/3vLRdVhZBK8NogWYO09fOGi9J3YiWdCMJ5QxmjwC/hR:/3d5ZQ1dxJIiW0MbQxA
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan