metasploit | 78ad9ab6e8a8ad63a8ff00c6e822721936d491672fd26c4700ebbc10ee94819c | Triage

Sharing

General

Target

78ad9ab6e8a8ad63a8ff00c6e822721936d491672fd26c4700ebbc10ee94819c
Size

14KB
Sample

240524-t9kpvacg77
MD5

15fba5f66b8a0732620a5502fdd98a96
SHA1

11b1d5474b77b2e5affbc45a768a7bfc6b107d56
SHA256

78ad9ab6e8a8ad63a8ff00c6e822721936d491672fd26c4700ebbc10ee94819c
SHA512

55bd547713f98b7b4c9418cfa057fe4eb6670b88633b7bb321fd6d4f904839822c60ab836576b8859e2d337cb8271328b6c539e1c2af52ddfa19edf91e3bdfdf
SSDEEP

192:+3mbPYCfMcrfOIuZmvKQxtzlSIVX6NOOcQMejDMN1:dMCfrfQ6tBSImMeUN1

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://118.31.0.110:80/UBSr

Attributes

headers User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; 360space)

Targets

- Target
  
  78ad9ab6e8a8ad63a8ff00c6e822721936d491672fd26c4700ebbc10ee94819c
- Size
  
  14KB
- MD5
  
  15fba5f66b8a0732620a5502fdd98a96
- SHA1
  
  11b1d5474b77b2e5affbc45a768a7bfc6b107d56
- SHA256
  
  78ad9ab6e8a8ad63a8ff00c6e822721936d491672fd26c4700ebbc10ee94819c
- SHA512
  
  55bd547713f98b7b4c9418cfa057fe4eb6670b88633b7bb321fd6d4f904839822c60ab836576b8859e2d337cb8271328b6c539e1c2af52ddfa19edf91e3bdfdf
- SSDEEP
  
  192:+3mbPYCfMcrfOIuZmvKQxtzlSIVX6NOOcQMejDMN1:dMCfrfQ6tBSImMeUN1
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan