metasploit | 9f6ae95b5540d0d6c60e942fa68dee44b2781c58da3f21321f18b8384ab41084 | Triage

Sharing

General

Target

9f6ae95b5540d0d6c60e942fa68dee44b2781c58da3f21321f18b8384ab41084.exe
Size

14KB
Sample

240421-khqmcafe8t
MD5

a7fcd0b15a080167c4c2f05063802a6e
SHA1

c761d68786ff15b6e991770a8c9aee778dd011e9
SHA256

9f6ae95b5540d0d6c60e942fa68dee44b2781c58da3f21321f18b8384ab41084
SHA512

64644039b3c20b861a3186e320e3a0a14119e65c5e37e0aa108515b13e833ef227379d757bb3d7cbf5cb2e37731b37cb846264677f464e5152621b25a71045c3
SSDEEP

192:AaH+DgGK83SxHn2OQ/dmBI4KBfTgir+xzPDbqUqV/Qjo7AGa:A2+kGKqbOCdWIVBff+xzPnfCXAn

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://101.78.63.44:80/UphQey

Attributes

headers User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; Win64; x64; Trident/6.0; Touch)

Targets

- Target
  
  9f6ae95b5540d0d6c60e942fa68dee44b2781c58da3f21321f18b8384ab41084.exe
- Size
  
  14KB
- MD5
  
  a7fcd0b15a080167c4c2f05063802a6e
- SHA1
  
  c761d68786ff15b6e991770a8c9aee778dd011e9
- SHA256
  
  9f6ae95b5540d0d6c60e942fa68dee44b2781c58da3f21321f18b8384ab41084
- SHA512
  
  64644039b3c20b861a3186e320e3a0a14119e65c5e37e0aa108515b13e833ef227379d757bb3d7cbf5cb2e37731b37cb846264677f464e5152621b25a71045c3
- SSDEEP
  
  192:AaH+DgGK83SxHn2OQ/dmBI4KBfTgir+xzPDbqUqV/Qjo7AGa:A2+kGKqbOCdWIVBff+xzPnfCXAn
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan