metasploit | 147d64c19e551bcdcb25eabb74760f02ed3bf930d89d661b44408c08c7b68f45 | Triage

Sharing

General

Target

cefd6d42ec0aacb2d0fe78d9ea26a100N.exe
Size

112KB
Sample

240910-3a5ems1gjc
MD5

cefd6d42ec0aacb2d0fe78d9ea26a100
SHA1

a4984e515e6743bd2b7cff15e364a31893ee3f4a
SHA256

147d64c19e551bcdcb25eabb74760f02ed3bf930d89d661b44408c08c7b68f45
SHA512

08fdb2194ac62ed308a60296174e722f1ef58b43f3bb225e39eeb86fc0160544d171afc2e18031b21159fb5755388d7e4cd303a17d83c3ee4ed627bace6754ff
SSDEEP

1536:c5/adOGJFfAZLaRbIdeWpDvl8fPoqdFGuKcStlgNeqCoPvGeBsCXKrhF:cokGS8bfWYnFWuKcSXDoXrBspX

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.1.11:4444

Targets

- Target
  
  cefd6d42ec0aacb2d0fe78d9ea26a100N.exe
- Size
  
  112KB
- MD5
  
  cefd6d42ec0aacb2d0fe78d9ea26a100
- SHA1
  
  a4984e515e6743bd2b7cff15e364a31893ee3f4a
- SHA256
  
  147d64c19e551bcdcb25eabb74760f02ed3bf930d89d661b44408c08c7b68f45
- SHA512
  
  08fdb2194ac62ed308a60296174e722f1ef58b43f3bb225e39eeb86fc0160544d171afc2e18031b21159fb5755388d7e4cd303a17d83c3ee4ed627bace6754ff
- SSDEEP
  
  1536:c5/adOGJFfAZLaRbIdeWpDvl8fPoqdFGuKcStlgNeqCoPvGeBsCXKrhF:cokGS8bfWYnFWuKcSXDoXrBspX
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan