metasploit | 6fac76a227fe0b974a1c28825951971ef78d6319ba860f0cd09638f57ce7070a | Triage

Sharing

General

Target

6fac76a227fe0b974a1c28825951971ef78d6319ba860f0cd09638f57ce7070a
Size

40KB
Sample

240919-j5ye2ayepf
MD5

03450261d6deac00cdf9fea585c2c301
SHA1

6ac2fa0361608fca8b4485fa5da41e6ad96dac72
SHA256

6fac76a227fe0b974a1c28825951971ef78d6319ba860f0cd09638f57ce7070a
SHA512

e18d0a85ad74ae3680f980278d2bce1e07eed673dd26402a41754763e559a7a541d98a951224d8f89c827cebc5171926604d4aa8eb6c8f6307344a2e829aa6a1
SSDEEP

384:PEWOzaNwf5Q6Wq7ZYXDoccdAMWsTndAww6wPhNGuByD2aY:2+NkW6Wql0GANKyLhwuByD4

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.128.129:3333

Targets

- Target
  
  6fac76a227fe0b974a1c28825951971ef78d6319ba860f0cd09638f57ce7070a
- Size
  
  40KB
- MD5
  
  03450261d6deac00cdf9fea585c2c301
- SHA1
  
  6ac2fa0361608fca8b4485fa5da41e6ad96dac72
- SHA256
  
  6fac76a227fe0b974a1c28825951971ef78d6319ba860f0cd09638f57ce7070a
- SHA512
  
  e18d0a85ad74ae3680f980278d2bce1e07eed673dd26402a41754763e559a7a541d98a951224d8f89c827cebc5171926604d4aa8eb6c8f6307344a2e829aa6a1
- SSDEEP
  
  384:PEWOzaNwf5Q6Wq7ZYXDoccdAMWsTndAww6wPhNGuByD2aY:2+NkW6Wql0GANKyLhwuByD4
Score

10^/10

metasploit backdoor trojan discovery
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoordiscoverytrojan