metasploit | 6c42e62176fd259c703a6709f49175bde5c4993a5d4c615e3178316d485cc594 | Triage

Resubmissions

Sharing

General

Target

tcp.ps1
Size

1KB
Sample

240606-jafxhabc71
MD5

a9f47f30b8f43a2d3696a0dce02ea742
SHA1

5138f50c6a05cb5f0330e9d1afa06bf038d73508
SHA256

6c42e62176fd259c703a6709f49175bde5c4993a5d4c615e3178316d485cc594
SHA512

174fabcabc950069c3ecf4e4f6dae093a8744e4cc9a162a920df9b33ca572c4a58988123f7e8bddf3c9dd6e7fcad39951657144a341d8c4ff31a28842fe00100

Score

10^/10

metasploit execution

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

3.125.223.134:19368

Targets

- Target
  
  tcp.ps1
- Size
  
  1KB
- MD5
  
  a9f47f30b8f43a2d3696a0dce02ea742
- SHA1
  
  5138f50c6a05cb5f0330e9d1afa06bf038d73508
- SHA256
  
  6c42e62176fd259c703a6709f49175bde5c4993a5d4c615e3178316d485cc594
- SHA512
  
  174fabcabc950069c3ecf4e4f6dae093a8744e4cc9a162a920df9b33ca572c4a58988123f7e8bddf3c9dd6e7fcad39951657144a341d8c4ff31a28842fe00100
Score

3^/10

execution
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1