metasploit | 250017469589ac8fac20403d2c86c806550bf8307ed718b1fb84fe6d3b6a0735 | Triage

Sharing

General

Target

250017469589ac8fac20403d2c86c806550bf8307ed718b1fb84fe6d3b6a0735
Size

14KB
Sample

240609-qrgnpabf83
MD5

79523fe2e9d848f1e81d38183d6ca762
SHA1

5ded0fa5690861e7b5c3f7809d8d71b408b144a3
SHA256

250017469589ac8fac20403d2c86c806550bf8307ed718b1fb84fe6d3b6a0735
SHA512

c07d92eabd782691517369df3b94e0533fe5198fc98f12cb524b9daaf8e19dc7145d7189978253106d503aae00a0342110440d87737da02d82add816ffa167b5
SSDEEP

192:63mbPYCfMcrfOIuZmvKQxtzlSIVX6NO/M8OejDMN1:xMCfrfQ6tBSIxMbeUN1

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://mxmail.lflinkup.net:4545/9foN

Attributes

headers User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) Host: mxmail.lflinkup.net

Targets

- Target
  
  250017469589ac8fac20403d2c86c806550bf8307ed718b1fb84fe6d3b6a0735
- Size
  
  14KB
- MD5
  
  79523fe2e9d848f1e81d38183d6ca762
- SHA1
  
  5ded0fa5690861e7b5c3f7809d8d71b408b144a3
- SHA256
  
  250017469589ac8fac20403d2c86c806550bf8307ed718b1fb84fe6d3b6a0735
- SHA512
  
  c07d92eabd782691517369df3b94e0533fe5198fc98f12cb524b9daaf8e19dc7145d7189978253106d503aae00a0342110440d87737da02d82add816ffa167b5
- SSDEEP
  
  192:63mbPYCfMcrfOIuZmvKQxtzlSIVX6NO/M8OejDMN1:xMCfrfQ6tBSIxMbeUN1
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan