metasploit | c839dde008088199f46f3dab416fd3c19ce396202eba9b4e4e15cf8c98c3f612 | Triage

Sharing

General

Target

c839dde008088199f46f3dab416fd3c19ce396202eba9b4e4e15cf8c98c3f612
Size

150KB
Sample

240913-jqa17ascjn
MD5

9023bd21dc5214bc07ed03e1927d2f79
SHA1

0d8706c97291fde6e61260ba24ed495850ca9f11
SHA256

c839dde008088199f46f3dab416fd3c19ce396202eba9b4e4e15cf8c98c3f612
SHA512

cc0c89d38bd4312cccc6759bea3035e08a563396fadb80e5c07274c11288482b99eb8ad90c9c233379e85d1f3f17d770ac5643c29aa604a95de2ecdbb1f301fd
SSDEEP

3072:nXatIbKwSmEo3gRZ6xTKfY6zSQh3IVpVE9KFFGNmPRkn6Gw:qtIb93Qd13wVE9K3GNQRkn6N

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.72.182:666

Targets

- Target
  
  c839dde008088199f46f3dab416fd3c19ce396202eba9b4e4e15cf8c98c3f612
- Size
  
  150KB
- MD5
  
  9023bd21dc5214bc07ed03e1927d2f79
- SHA1
  
  0d8706c97291fde6e61260ba24ed495850ca9f11
- SHA256
  
  c839dde008088199f46f3dab416fd3c19ce396202eba9b4e4e15cf8c98c3f612
- SHA512
  
  cc0c89d38bd4312cccc6759bea3035e08a563396fadb80e5c07274c11288482b99eb8ad90c9c233379e85d1f3f17d770ac5643c29aa604a95de2ecdbb1f301fd
- SSDEEP
  
  3072:nXatIbKwSmEo3gRZ6xTKfY6zSQh3IVpVE9KFFGNmPRkn6Gw:qtIb93Qd13wVE9K3GNQRkn6N
Score

10^/10

metasploit backdoor trojan discovery
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoordiscoverytrojan