metasploit | 1e5f5c4d877b001f1c7bde8ab2f8f97cb9e93c912e984ad2aafed61f577e14c5 | Triage

Sharing

General

Target

MSI4EEC.tmp
Size

124KB
Sample

240916-x661fsward
MD5

c03e1fff13af567d99148187b95166d4
SHA1

94f3c9512260d0b5d57e1347bb29a82ba4cda618
SHA256

1e5f5c4d877b001f1c7bde8ab2f8f97cb9e93c912e984ad2aafed61f577e14c5
SHA512

86081eda138f90464701ff8ee0680479cab0220b26308441da01d0254adf1e5577543bca70f4288cd595aa6daf8e7eee711c9bcbe90087c5a9c2175f1af8ca58
SSDEEP

1536:I8JW4a591GdX7zaco6HaH9h40SygWMb+KR0Nc8QsJq3:lJha5vGtho66TSygWe0Nc8QsC

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

3.235.131.212:443

Targets

- Target
  
  MSI4EEC.tmp
- Size
  
  124KB
- MD5
  
  c03e1fff13af567d99148187b95166d4
- SHA1
  
  94f3c9512260d0b5d57e1347bb29a82ba4cda618
- SHA256
  
  1e5f5c4d877b001f1c7bde8ab2f8f97cb9e93c912e984ad2aafed61f577e14c5
- SHA512
  
  86081eda138f90464701ff8ee0680479cab0220b26308441da01d0254adf1e5577543bca70f4288cd595aa6daf8e7eee711c9bcbe90087c5a9c2175f1af8ca58
- SSDEEP
  
  1536:I8JW4a591GdX7zaco6HaH9h40SygWMb+KR0Nc8QsJq3:lJha5vGtho66TSygWe0Nc8QsC
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan