metasploit | c5a3c3a076512eac462115704f44477ff7f90f68c9bc1fb44ed3baeae113123b | Triage

Sharing

General

Target

40f09883e1757e712e24b7ae8a90bf40_NeikiAnalytics.exe
Size

72KB
Sample

240524-vdm1rsda35
MD5

40f09883e1757e712e24b7ae8a90bf40
SHA1

89828c6b7d38e04ff5961fd70ff90b6b1d5dbeb4
SHA256

c5a3c3a076512eac462115704f44477ff7f90f68c9bc1fb44ed3baeae113123b
SHA512

9c8557290d57af59957c202d3377757bcfa854dc3831aa487715753ce0381dbf74f97f30ae209308e5a40e65b1217f971941c648bdbeb7eb2d32aa6474698b05
SSDEEP

1536:I4aTgJEkAKsxTrHAL6pMb+KR0Nc8QsJq39:coAKsVHLpe0Nc8QsC9

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

167.172.194.142:51331

Targets

- Target
  
  40f09883e1757e712e24b7ae8a90bf40_NeikiAnalytics.exe
- Size
  
  72KB
- MD5
  
  40f09883e1757e712e24b7ae8a90bf40
- SHA1
  
  89828c6b7d38e04ff5961fd70ff90b6b1d5dbeb4
- SHA256
  
  c5a3c3a076512eac462115704f44477ff7f90f68c9bc1fb44ed3baeae113123b
- SHA512
  
  9c8557290d57af59957c202d3377757bcfa854dc3831aa487715753ce0381dbf74f97f30ae209308e5a40e65b1217f971941c648bdbeb7eb2d32aa6474698b05
- SSDEEP
  
  1536:I4aTgJEkAKsxTrHAL6pMb+KR0Nc8QsJq39:coAKsVHLpe0Nc8QsC9
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan