metasploit | eeb8950a9f33f84e8442a000383f133bcf6907448fe31d7f81595238d9726d36 | Triage

Sharing

General

Target

eeb8950a9f33f84e8442a000383f133bcf6907448fe31d7f81595238d9726d36
Size

3KB
Sample

240419-vaaahahf32
MD5

191d1af44ddc8c0edc5955c7de5f3d52
SHA1

3daf5a4c189346daea57ec2cf552c42dca521fdf
SHA256

eeb8950a9f33f84e8442a000383f133bcf6907448fe31d7f81595238d9726d36
SHA512

42810538cb48ad2d57180c2ebd4fb2cbda0f7c6458fe93526ab434384acc9c4fbea554a4281f019e0367c5ab202776d0608c70a16bc36b5b8207a7e01c6d3103

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.1.8:8080

Targets

- Target
  
  9e6c00d495107c977eda44aee56a8a54225cc0e6f15fa084161ffe8cde6ab622.exe
- Size
  
  17KB
- MD5
  
  5485359ac4238d5954efe0905be1b666
- SHA1
  
  adf8028922e6cff8bb53341135d71537f72740ea
- SHA256
  
  9e6c00d495107c977eda44aee56a8a54225cc0e6f15fa084161ffe8cde6ab622
- SHA512
  
  fc183cac0e50a01a94ed07aef297debd8fd206108ad7d35e7fd1b052d9a267062466e68a22a49464fd15ec819faa7fc0f1a82b34d2a6332f147b4a214ca22968
- SSDEEP
  
  384:zEEoLO56ayzcMj+u+XvueaWwjuYgSwDpwmc6MnfTtHF0:gE8O56lcVu+X0aYgSwDrcZfTNa
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan