Overview

overview

10

Static

static

10

win11.exe

windows7-x64

10

win11.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    win11.exe

  • Size

    102KB

  • Sample

    240917-r7bcaayeje

  • MD5

    3d1ae2bf9e532fc8c251fe2b5e06e91c

  • SHA1

    84bb72c7719ecd9e86670903530953875ece4fe2

  • SHA256

    522a9fa410057a3410833a0798124dd34f69e997b544b3cff405eb4ce5dd134f

  • SHA512

    8bd2461236ac7fb92fe2b4e3c58bd02a7c989ae110fb91e5f371b144d78e1f7a9b5523d6efb2284232e3e72cbc417ace9e384386bf793c7c79d7c4b5a6512310

  • SSDEEP

    1536:5gOfAO5+QnMPQail0kOoBVLVePs1qgqszmGjLmNy5Dr:5JfAyIW5Dr

Score
10/10
metasploitbackdoordiscoverytrojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.1.179:444

Targets

    • Target

      win11.exe

    • Size

      102KB

    • MD5

      3d1ae2bf9e532fc8c251fe2b5e06e91c

    • SHA1

      84bb72c7719ecd9e86670903530953875ece4fe2

    • SHA256

      522a9fa410057a3410833a0798124dd34f69e997b544b3cff405eb4ce5dd134f

    • SHA512

      8bd2461236ac7fb92fe2b4e3c58bd02a7c989ae110fb91e5f371b144d78e1f7a9b5523d6efb2284232e3e72cbc417ace9e384386bf793c7c79d7c4b5a6512310

    • SSDEEP

      1536:5gOfAO5+QnMPQail0kOoBVLVePs1qgqszmGjLmNy5Dr:5JfAyIW5Dr

    Score
    10/10
    metasploitbackdoortrojandiscovery

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks