metasploit | 1d0246dd4655055b16cdd655ae154d169f97b36e1c8691204a45dbda9db6a489 | Triage

Sharing

General

Target

95ce2425e4a6b3e76ddd2cd2b3102d40_NeikiAnalytics
Size

72KB
Sample

240510-hlznbacc37
MD5

95ce2425e4a6b3e76ddd2cd2b3102d40
SHA1

a40c1560fc14e0f3773f6edc4c83141022b7a561
SHA256

1d0246dd4655055b16cdd655ae154d169f97b36e1c8691204a45dbda9db6a489
SHA512

711523be54cd08849df5c2cc55d521e387aec3370d42a651418708816d3b878e3cfcd84c9de794db198cad38f073a6a7779df8490226b0d4c30d4170beb8a143
SSDEEP

1536:I5jMdFogENRmx26LwsJhMb+KR0Nc8QsJq39:aIduNcx2Gwoe0Nc8QsC9

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

106.250.162.245:24907

Extracted

Family

metasploit

Version

encoder/call4_dword_xor

Targets

- Target
  
  95ce2425e4a6b3e76ddd2cd2b3102d40_NeikiAnalytics
- Size
  
  72KB
- MD5
  
  95ce2425e4a6b3e76ddd2cd2b3102d40
- SHA1
  
  a40c1560fc14e0f3773f6edc4c83141022b7a561
- SHA256
  
  1d0246dd4655055b16cdd655ae154d169f97b36e1c8691204a45dbda9db6a489
- SHA512
  
  711523be54cd08849df5c2cc55d521e387aec3370d42a651418708816d3b878e3cfcd84c9de794db198cad38f073a6a7779df8490226b0d4c30d4170beb8a143
- SSDEEP
  
  1536:I5jMdFogENRmx26LwsJhMb+KR0Nc8QsJq39:aIduNcx2Gwoe0Nc8QsC9
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan