metasploit | 56f63c808180b1e11c46a98e42fe6aaee6fde0b1514906f6450b86b7f6f3404e | Triage

Sharing

General

Target

Trojan.Win32.Meterpreter.O-56f63c808180b1e11c46a98e42fe6aaee6fde0b1514906f6450b86b7f6f3404eN
Size

72KB
Sample

240915-z47kbatdmr
MD5

7bc7bf5151048fdc727968caae355140
SHA1

6d7dfa9af2a105bb69e4b8a4735d4d9d2eba017e
SHA256

56f63c808180b1e11c46a98e42fe6aaee6fde0b1514906f6450b86b7f6f3404e
SHA512

6648ca840c783508c9a4f699c15e31dd3430168ae23066f3d3cecb85d68ca146f75aacc083d196cafc005decc2c16716f529fa1537d5fa09d387b5c6a6928c5f
SSDEEP

1536:IdFQuq61b4NNKdjc0iFTSDh49Pl2Mb+KR0Nc8QsJq39:JKb4NNUpU6SPce0Nc8QsC9

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.45.161:443

Targets

- Target
  
  Trojan.Win32.Meterpreter.O-56f63c808180b1e11c46a98e42fe6aaee6fde0b1514906f6450b86b7f6f3404eN
- Size
  
  72KB
- MD5
  
  7bc7bf5151048fdc727968caae355140
- SHA1
  
  6d7dfa9af2a105bb69e4b8a4735d4d9d2eba017e
- SHA256
  
  56f63c808180b1e11c46a98e42fe6aaee6fde0b1514906f6450b86b7f6f3404e
- SHA512
  
  6648ca840c783508c9a4f699c15e31dd3430168ae23066f3d3cecb85d68ca146f75aacc083d196cafc005decc2c16716f529fa1537d5fa09d387b5c6a6928c5f
- SSDEEP
  
  1536:IdFQuq61b4NNKdjc0iFTSDh49Pl2Mb+KR0Nc8QsJq39:JKb4NNUpU6SPce0Nc8QsC9
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan