metasploit | 8a00c2a8b1ab3c32c48657de53bf0410afae9b919ed8be5c456564f7ea0b6824 | Triage

Sharing

General

Target

a00f3e5bc138db5fe8dd868ccdd89c30_NEIKI
Size

72KB
Sample

240508-n8h7qsea62
MD5

a00f3e5bc138db5fe8dd868ccdd89c30
SHA1

50bf34a38d032c48e99a5c48afa77b9b3c0c4b1f
SHA256

8a00c2a8b1ab3c32c48657de53bf0410afae9b919ed8be5c456564f7ea0b6824
SHA512

fbf262b332568e2e05342704220a14872940265d82f7c5335bdd3f10bf67ee4a681ee1a3cbbe5355c3812d10a7d6dc477768ccf7b10deffdf7c54986909fa83b
SSDEEP

1536:IQQoU6S+LDLrSjUUdgpRoGMb+KR0Nc8QsJq39:u5+LmjUCwRoGe0Nc8QsC9

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.30.202:4444

Targets

- Target
  
  a00f3e5bc138db5fe8dd868ccdd89c30_NEIKI
- Size
  
  72KB
- MD5
  
  a00f3e5bc138db5fe8dd868ccdd89c30
- SHA1
  
  50bf34a38d032c48e99a5c48afa77b9b3c0c4b1f
- SHA256
  
  8a00c2a8b1ab3c32c48657de53bf0410afae9b919ed8be5c456564f7ea0b6824
- SHA512
  
  fbf262b332568e2e05342704220a14872940265d82f7c5335bdd3f10bf67ee4a681ee1a3cbbe5355c3812d10a7d6dc477768ccf7b10deffdf7c54986909fa83b
- SSDEEP
  
  1536:IQQoU6S+LDLrSjUUdgpRoGMb+KR0Nc8QsJq39:u5+LmjUCwRoGe0Nc8QsC9
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan