metasploit | 146b3231f205a1146425f95a7ac1debad69b04701634e81e039ef05345fd5515 | Triage

Sharing

General

Target

146b3231f205a1146425f95a7ac1debad69b04701634e81e039ef05345fd5515
Size

72KB
Sample

240614-xnjgfawern
MD5

a30ef60f4ae3423f41ab282dfb2abd2b
SHA1

24b8fac706d0ccbccff199df6793493bf90937b5
SHA256

146b3231f205a1146425f95a7ac1debad69b04701634e81e039ef05345fd5515
SHA512

2d96a498a9bef769e8b44fe6cd9dea415b309046eb5aff4e5c4346e3ed38e973019b39d847e90ed824f024b2ed96ae22719686f0604f2a16f3cd207697e96d6a
SSDEEP

1536:I2GspuDFBJm1VcmQy7a1v2uPkgbEldJQMb+KR0Nc8QsJq39:64uDF/m16L3MuPLbEZQe0Nc8QsC9

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/exec

Targets

- Target
  
  146b3231f205a1146425f95a7ac1debad69b04701634e81e039ef05345fd5515
- Size
  
  72KB
- MD5
  
  a30ef60f4ae3423f41ab282dfb2abd2b
- SHA1
  
  24b8fac706d0ccbccff199df6793493bf90937b5
- SHA256
  
  146b3231f205a1146425f95a7ac1debad69b04701634e81e039ef05345fd5515
- SHA512
  
  2d96a498a9bef769e8b44fe6cd9dea415b309046eb5aff4e5c4346e3ed38e973019b39d847e90ed824f024b2ed96ae22719686f0604f2a16f3cd207697e96d6a
- SSDEEP
  
  1536:I2GspuDFBJm1VcmQy7a1v2uPkgbEldJQMb+KR0Nc8QsJq39:64uDF/m16L3MuPLbEZQe0Nc8QsC9
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Grants admin privileges
  Uses net.exe to modify the user's privileges.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Account Manipulation

Privilege Escalation

Account Manipulation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2