metasploit | c25daf9d6bdcdfe1940058c990cc65d6310f60a9eda9209bd3e8918e07f39d33 | Triage

Sharing

General

Target

c25daf9d6bdcdfe1940058c990cc65d6310f60a9eda9209bd3e8918e07f39d33
Size

78KB
Sample

240918-bh58csvepr
MD5

e2c66d5f1782c1a061d7ca7274a551d7
SHA1

38cba74fc88ada12e78819b8913342e0d1f08e72
SHA256

c25daf9d6bdcdfe1940058c990cc65d6310f60a9eda9209bd3e8918e07f39d33
SHA512

b5147fa28ac887930e11e408d39bdcfdcebd4b98614985d2f1a771a5310e08d02691d8973e174f8376aa7d27dfa309758529dc0532788e804ebe223487a985f3
SSDEEP

768:ZjKNcHHHttC05MYLqZ0i6sNdBUsmLpLmYwVZPsWky:Zjot0YZeEd21sx

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/exec

Targets

- Target
  
  c25daf9d6bdcdfe1940058c990cc65d6310f60a9eda9209bd3e8918e07f39d33
- Size
  
  78KB
- MD5
  
  e2c66d5f1782c1a061d7ca7274a551d7
- SHA1
  
  38cba74fc88ada12e78819b8913342e0d1f08e72
- SHA256
  
  c25daf9d6bdcdfe1940058c990cc65d6310f60a9eda9209bd3e8918e07f39d33
- SHA512
  
  b5147fa28ac887930e11e408d39bdcfdcebd4b98614985d2f1a771a5310e08d02691d8973e174f8376aa7d27dfa309758529dc0532788e804ebe223487a985f3
- SSDEEP
  
  768:ZjKNcHHHttC05MYLqZ0i6sNdBUsmLpLmYwVZPsWky:Zjot0YZeEd21sx
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan