metasploit

General

Target

6698a50bc176ee8507dedbe5c4410aa645ab77622a25b5fdfcf909813ba3d3a7N
Size

5KB
Sample

240918-brlv3swanq
MD5

656df828704ef34c7e3665fbc67fede0
SHA1

3625d969401784a94dde4b99f93628b4647f3ac0
SHA256

6698a50bc176ee8507dedbe5c4410aa645ab77622a25b5fdfcf909813ba3d3a7
SHA512

7eca787ef12cb2eb6d01873df3004156c617601719a3f5c6b1ca94f9888fd5b8c566fb5a863fba8d3538be358c8b886e692eb039d1998d8f196b94dde04864e7
SSDEEP

96:Tgf2j/vkULlpxsFH6kXh48VtaNa0FozNt:TgGnfpxcXh4WQq

Score

10^/10

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_http

C2

http://192.168.142.133:8888/16BB_pKPHogMHw0eav7CigQTkO35kqY4p2XczckdeVF3PKyNlBLOsmriT

Targets

- Target
  
  6698a50bc176ee8507dedbe5c4410aa645ab77622a25b5fdfcf909813ba3d3a7N
- Size
  
  5KB
- MD5
  
  656df828704ef34c7e3665fbc67fede0
- SHA1
  
  3625d969401784a94dde4b99f93628b4647f3ac0
- SHA256
  
  6698a50bc176ee8507dedbe5c4410aa645ab77622a25b5fdfcf909813ba3d3a7
- SHA512
  
  7eca787ef12cb2eb6d01873df3004156c617601719a3f5c6b1ca94f9888fd5b8c566fb5a863fba8d3538be358c8b886e692eb039d1998d8f196b94dde04864e7
- SSDEEP
  
  96:Tgf2j/vkULlpxsFH6kXh48VtaNa0FozNt:TgGnfpxcXh4WQq
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2