metasploit | 14d20034aeebccc0a6b1782eeb080acfd89431016044bbee3c31ca2ccdd818cc | Triage

Sharing

General

Target

14d20034aeebccc0a6b1782eeb080acfd89431016044bbee3c31ca2ccdd818cc
Size

1.4MB
Sample

240829-xz7y6syfkp
MD5

0c5aa31af7fe1d19f7d6d72c8bf4f51e
SHA1

3776ee0e04ca0b74c071a5bc484c1c43ad07e45d
SHA256

14d20034aeebccc0a6b1782eeb080acfd89431016044bbee3c31ca2ccdd818cc
SHA512

1f93fe1cf071b883813523e6a79d34c09aaf1a161ea7760c16e2950c1ae39bf9d7141177824dc83cd699e5c1d763846b7c758c605e6cecca083434b96c963ee8
SSDEEP

24576:EWzNpYIUzAcFZPVUw1L9ub0VsfMzXGk1GUzwgg2aPIJdTaKIe0MStS/o6ui2OnK0:3c3vpJSMwg2k8KIeVSc/zuit

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.86.119:443

Targets

- Target
  
  14d20034aeebccc0a6b1782eeb080acfd89431016044bbee3c31ca2ccdd818cc
- Size
  
  1.4MB
- MD5
  
  0c5aa31af7fe1d19f7d6d72c8bf4f51e
- SHA1
  
  3776ee0e04ca0b74c071a5bc484c1c43ad07e45d
- SHA256
  
  14d20034aeebccc0a6b1782eeb080acfd89431016044bbee3c31ca2ccdd818cc
- SHA512
  
  1f93fe1cf071b883813523e6a79d34c09aaf1a161ea7760c16e2950c1ae39bf9d7141177824dc83cd699e5c1d763846b7c758c605e6cecca083434b96c963ee8
- SSDEEP
  
  24576:EWzNpYIUzAcFZPVUw1L9ub0VsfMzXGk1GUzwgg2aPIJdTaKIe0MStS/o6ui2OnK0:3c3vpJSMwg2k8KIeVSc/zuit
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan