metasploit | 9cedab58f738956b11292723714f0160f5cf137fc3b8ba5fdfb76858b18afb74 | Triage

Sharing

General

Target

9cedab58f738956b11292723714f0160f5cf137fc3b8ba5fdfb76858b18afb74
Size

818KB
Sample

240821-p6hnvszaph
MD5

69f87bdebbf0ddac904c0ac975d0b211
SHA1

df935bf22a628f864b17060e7ac5b2dc01af188b
SHA256

9cedab58f738956b11292723714f0160f5cf137fc3b8ba5fdfb76858b18afb74
SHA512

8d191c5fc3c2cfc6f844791c57e4e08359178c8a41e701c57cd70622d93f61ffaca85b36852b09a5d3c8dbc339869ee22f7dde8a21530ef67f7bae636fef7a19
SSDEEP

12288:S7FqNtypyCxjES8/Nq2C4mqy/JsXn2Jh13dKzu9fodS5vWvU+gyM2EOshcUveLYy:QOtIjO/Fy/JJ1yvUpJsUvoBSE

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.193.133:4042

Targets

- Target
  
  9cedab58f738956b11292723714f0160f5cf137fc3b8ba5fdfb76858b18afb74
- Size
  
  818KB
- MD5
  
  69f87bdebbf0ddac904c0ac975d0b211
- SHA1
  
  df935bf22a628f864b17060e7ac5b2dc01af188b
- SHA256
  
  9cedab58f738956b11292723714f0160f5cf137fc3b8ba5fdfb76858b18afb74
- SHA512
  
  8d191c5fc3c2cfc6f844791c57e4e08359178c8a41e701c57cd70622d93f61ffaca85b36852b09a5d3c8dbc339869ee22f7dde8a21530ef67f7bae636fef7a19
- SSDEEP
  
  12288:S7FqNtypyCxjES8/Nq2C4mqy/JsXn2Jh13dKzu9fodS5vWvU+gyM2EOshcUveLYy:QOtIjO/Fy/JJ1yvUpJsUvoBSE
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan