metasploit | 9e2249c9948541579afd1f18f67d63ca573336a67e77983a9047293d119a89bd | Triage

Sharing

General

Target

b7a98e8dfb5ba0e0779d2c715c0c72a0_NeikiAnalytics
Size

72KB
Sample

240515-k53kesae4t
MD5

b7a98e8dfb5ba0e0779d2c715c0c72a0
SHA1

7758e204c8e2182fcf2643baf8044031a651fe58
SHA256

9e2249c9948541579afd1f18f67d63ca573336a67e77983a9047293d119a89bd
SHA512

0b97893d57e1225353949fd7c0cb090ddd54569d314b9797dcc14f7e9fc81d02ec1af405b6146c09efbb38021f11bdf4b7f84121c08f7e21d0a7f1169d86bfa8
SSDEEP

1536:IF7f1iNINT85pvZmc02JgWEv5Mb+KR0Nc8QsJq39:Qf6RmUExe0Nc8QsC9

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/call4_dword_xor

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

212.208.169.238:29296

Targets

- Target
  
  b7a98e8dfb5ba0e0779d2c715c0c72a0_NeikiAnalytics
- Size
  
  72KB
- MD5
  
  b7a98e8dfb5ba0e0779d2c715c0c72a0
- SHA1
  
  7758e204c8e2182fcf2643baf8044031a651fe58
- SHA256
  
  9e2249c9948541579afd1f18f67d63ca573336a67e77983a9047293d119a89bd
- SHA512
  
  0b97893d57e1225353949fd7c0cb090ddd54569d314b9797dcc14f7e9fc81d02ec1af405b6146c09efbb38021f11bdf4b7f84121c08f7e21d0a7f1169d86bfa8
- SSDEEP
  
  1536:IF7f1iNINT85pvZmc02JgWEv5Mb+KR0Nc8QsJq39:Qf6RmUExe0Nc8QsC9
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan