metasploit | 3e706ac92fd452781bee8d4b5c35b09a8fc4e3a5faa08178a0cabeaadd9dd28d | Triage

Sharing

General

Target

3e706ac92fd452781bee8d4b5c35b09a8fc4e3a5faa08178a0cabeaadd9dd28d
Size

97KB
Sample

240922-m6vbjswenp
MD5

36b19ebfb48f94489af84c889fbfa5d4
SHA1

78516432502c25ce1fc6d07bafaae03b3b62f12f
SHA256

3e706ac92fd452781bee8d4b5c35b09a8fc4e3a5faa08178a0cabeaadd9dd28d
SHA512

83626229eca8215bed5824ece31ca23c009bae68c80f94db856c2c127b42e87bf0819a11321265d25672a0be2c0baf7bc24ef31978014c001b77dc04c709876c
SSDEEP

1536:fxBtQncPQ8ihAkOJDBNGePs1PIsumGTLXZpvCBj:f1fZvCl

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.188.1:1313

Targets

- Target
  
  3e706ac92fd452781bee8d4b5c35b09a8fc4e3a5faa08178a0cabeaadd9dd28d
- Size
  
  97KB
- MD5
  
  36b19ebfb48f94489af84c889fbfa5d4
- SHA1
  
  78516432502c25ce1fc6d07bafaae03b3b62f12f
- SHA256
  
  3e706ac92fd452781bee8d4b5c35b09a8fc4e3a5faa08178a0cabeaadd9dd28d
- SHA512
  
  83626229eca8215bed5824ece31ca23c009bae68c80f94db856c2c127b42e87bf0819a11321265d25672a0be2c0baf7bc24ef31978014c001b77dc04c709876c
- SSDEEP
  
  1536:fxBtQncPQ8ihAkOJDBNGePs1PIsumGTLXZpvCBj:f1fZvCl
Score

10^/10

metasploit backdoor trojan discovery
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2