metasploit | 4b0d745c41d4c1eb4c4dccebc268890dba14cd83eb4c06eb085511ffb28bccc7 | Triage

Sharing

General

Target

4b0d745c41d4c1eb4c4dccebc268890dba14cd83eb4c06eb085511ffb28bccc7
Size

14KB
Sample

240421-md6twahb4z
MD5

ae5a3854837e82de9cfaa0a22cfb2d19
SHA1

a20645124431725924ffd32672d9ab490b08e4b3
SHA256

4b0d745c41d4c1eb4c4dccebc268890dba14cd83eb4c06eb085511ffb28bccc7
SHA512

641dceeea577f7ffc1f21c5fb3dec96dd55930f1dd1aa392302a1df4f8cba912070dc1724e737405b376e2e7c8ef1a3a5cfa237f5dc1813156bcd45024d1721f
SSDEEP

192:K3mbPYCfMcrfOIuZmvKQxtzlSIVX6NOjcluJUkoulejDMN1:hMCfrfQ6tBSIRckek/leUN1

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://43.136.90.70:800/ft3O

Attributes

headers User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; XBLWP7; ZuneWP7)

Targets

- Target
  
  4b0d745c41d4c1eb4c4dccebc268890dba14cd83eb4c06eb085511ffb28bccc7
- Size
  
  14KB
- MD5
  
  ae5a3854837e82de9cfaa0a22cfb2d19
- SHA1
  
  a20645124431725924ffd32672d9ab490b08e4b3
- SHA256
  
  4b0d745c41d4c1eb4c4dccebc268890dba14cd83eb4c06eb085511ffb28bccc7
- SHA512
  
  641dceeea577f7ffc1f21c5fb3dec96dd55930f1dd1aa392302a1df4f8cba912070dc1724e737405b376e2e7c8ef1a3a5cfa237f5dc1813156bcd45024d1721f
- SSDEEP
  
  192:K3mbPYCfMcrfOIuZmvKQxtzlSIVX6NOjcluJUkoulejDMN1:hMCfrfQ6tBSIRckek/leUN1
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan