metasploit | 9231be0a885bf2a696e47e004951fe99e5cdba1514606df6e3a850b1b5ebfef9 | Triage

Sharing

General

Target

9231be0a885bf2a696e47e004951fe99e5cdba1514606df6e3a850b1b5ebfef9
Size

72KB
Sample

240609-fh6lcadh5z
MD5

a97d0aee4c5352e8a33035f1bff8bc72
SHA1

9f72066835909c7b6a92e5c56c28bfbd51cfb908
SHA256

9231be0a885bf2a696e47e004951fe99e5cdba1514606df6e3a850b1b5ebfef9
SHA512

ecdfe0d034101150e5e9559194b70e59619763eb1baeeed5d14f2090d1bbf0ec87c0f05a59c11ba9f72da7c062f908165c34a8789d001024ba6c5cbb4e310253
SSDEEP

1536:IILZVIBk7CBPxhiaqUBQ65iUpLxujZblM1JZnlMb+KR0Nc8QsJq39:P52BiaN75DhMjBlM1Ne0Nc8QsC9

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/call4_dword_xor

Extracted

Family

metasploit

Version

windows/shell_hidden_bind_tcp

Targets

- Target
  
  9231be0a885bf2a696e47e004951fe99e5cdba1514606df6e3a850b1b5ebfef9
- Size
  
  72KB
- MD5
  
  a97d0aee4c5352e8a33035f1bff8bc72
- SHA1
  
  9f72066835909c7b6a92e5c56c28bfbd51cfb908
- SHA256
  
  9231be0a885bf2a696e47e004951fe99e5cdba1514606df6e3a850b1b5ebfef9
- SHA512
  
  ecdfe0d034101150e5e9559194b70e59619763eb1baeeed5d14f2090d1bbf0ec87c0f05a59c11ba9f72da7c062f908165c34a8789d001024ba6c5cbb4e310253
- SSDEEP
  
  1536:IILZVIBk7CBPxhiaqUBQ65iUpLxujZblM1JZnlMb+KR0Nc8QsJq39:P52BiaN75DhMjBlM1Ne0Nc8QsC9
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan