metasploit | f1be0c2f491abf41a484f44ed917473bc356bf1f5ad4d916ea262dff3bdfb3bb | Triage

Submit
Reports

Overview

overview

Static

static

met.exe

windows7-x64

met.exe

windows10-2004-x64

Analysis

max time kernel
149s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
30/04/2024, 11:42

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

met.exe

Resource

win7-20240221-en

metasploit backdoor trojan

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

met.exe

Resource

win10v2004-20240426-en

metasploit backdoor trojan

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

met.exe
Size

7KB
MD5

42b1c80c5b9fa3757b36149bc38a5d05
SHA1

60e877155caecf469f1b8d3fa38e2786dbc2403b
SHA256

f1be0c2f491abf41a484f44ed917473bc356bf1f5ad4d916ea262dff3bdfb3bb
SHA512

0ccff37fcd7c631bdd78d85ef3569251b0f55423281c1262e11e59bd962a12704186a119effab2a37473ec44f006e413128f5458409086b3b5539284f213e2a8
SSDEEP

24:eFGStrJ9u0/6nCnZdkBQAV286WY+t9KZq8eNDMSCvOXpmB:is0iakBQMi+t9OSD9C2kB

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

192.168.45.229:443

Signatures

MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
trojan backdoor metasploit

Processes

C:\Users\Admin\AppData\Local\Temp\met.exe
"C:\Users\Admin\AppData\Local\Temp\met.exe"
1⤵
PID:2996

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2996-0-0x0000000140000000-0x0000000140004278-memory.dmp

Filesize
16KB

Download
memory/2996-1-0x0000000140000000-0x0000000140004278-memory.dmp

Filesize
16KB

Download

© 2018-2025

Terms | Privacy