metasploit | a0676605bf871ae0ec98e25261fca7c8e4f814c1978a50aaae0d40084830872e | Triage

Sharing

General

Target

a0676605bf871ae0ec98e25261fca7c8e4f814c1978a50aaae0d40084830872e
Size

1.3MB
Sample

240529-pcfx6see98
MD5

49e9f1e0012218ffa3a4351ae6b06f7a
SHA1

022b374d7239bd1ad303f87b0f58807c0dc1ce6f
SHA256

a0676605bf871ae0ec98e25261fca7c8e4f814c1978a50aaae0d40084830872e
SHA512

33e851d03248aa5564f61e02637e8cc8bc780d6497a3862d70e47ccfe0a1da58bc9f71af28c9aefb69f06dd225a179052fd064da9aa189168150ef4e9921905b
SSDEEP

24576:4lRw+KdfECeOsK8u3Y2VrndCZJfVOV0tm1:kX4f6C

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

122.51.159.109:3333

Targets

- Target
  
  a0676605bf871ae0ec98e25261fca7c8e4f814c1978a50aaae0d40084830872e
- Size
  
  1.3MB
- MD5
  
  49e9f1e0012218ffa3a4351ae6b06f7a
- SHA1
  
  022b374d7239bd1ad303f87b0f58807c0dc1ce6f
- SHA256
  
  a0676605bf871ae0ec98e25261fca7c8e4f814c1978a50aaae0d40084830872e
- SHA512
  
  33e851d03248aa5564f61e02637e8cc8bc780d6497a3862d70e47ccfe0a1da58bc9f71af28c9aefb69f06dd225a179052fd064da9aa189168150ef4e9921905b
- SSDEEP
  
  24576:4lRw+KdfECeOsK8u3Y2VrndCZJfVOV0tm1:kX4f6C
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

metasploitbackdoortrojan