metasploit | 0116837f6334c58e3fed799dcc71576c76bc1b226d63e143e9685628f05d987b | Triage

Sharing

General

Target

0116837f6334c58e3fed799dcc71576c76bc1b226d63e143e9685628f05d987b
Size

14KB
Sample

240509-mgymnsfe97
MD5

f1585778fe2abf5393a92e38393f7938
SHA1

0613aaa331f6c8c2526389ce5faf677bf6aa1f05
SHA256

0116837f6334c58e3fed799dcc71576c76bc1b226d63e143e9685628f05d987b
SHA512

c73f9304594d64edce7b3a0c320eecb4105d2356321e27ad6a0cbc53355d545bfe86d53c0fb2a90261f8438438960b422b1ffc8a559b05ff72702754147b3248
SSDEEP

192:+3mbPYCfMcrfOIuZmvKQxtzlSIVX6NOv03BbrNejDMN1:dMCfrfQ6tBSIxUrNeUN1

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://192.168.0.108:8888/NDzP

Attributes

headers User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.0; Trident/5.0)

Targets

- Target
  
  0116837f6334c58e3fed799dcc71576c76bc1b226d63e143e9685628f05d987b
- Size
  
  14KB
- MD5
  
  f1585778fe2abf5393a92e38393f7938
- SHA1
  
  0613aaa331f6c8c2526389ce5faf677bf6aa1f05
- SHA256
  
  0116837f6334c58e3fed799dcc71576c76bc1b226d63e143e9685628f05d987b
- SHA512
  
  c73f9304594d64edce7b3a0c320eecb4105d2356321e27ad6a0cbc53355d545bfe86d53c0fb2a90261f8438438960b422b1ffc8a559b05ff72702754147b3248
- SSDEEP
  
  192:+3mbPYCfMcrfOIuZmvKQxtzlSIVX6NOv03BbrNejDMN1:dMCfrfQ6tBSIxUrNeUN1
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan