metasploit | 08f25be2b3ed65b8e8292f6c201aae55e2e41f29f10d36b9e2057223c8d35434 | Triage

Sharing

General

Target

08f25be2b3ed65b8e8292f6c201aae55e2e41f29f10d36b9e2057223c8d35434N
Size

1.1MB
Sample

240922-pt7r8azfle
MD5

730ccfca65a7765f3daa7e7ac01bc730
SHA1

2e9a43a58d6ed60c582e4cab94bc3a11463794ab
SHA256

08f25be2b3ed65b8e8292f6c201aae55e2e41f29f10d36b9e2057223c8d35434
SHA512

17d66a5bb7ba923509b2049d98e5ac3842f9ede876908ac2e62baa3d119ed39b71e0dd35c1647cc7c825e391581e9a492d3b81a33c69716b645ad3ef9495fa12
SSDEEP

24576:v13gJnNiQQSA7Ph8QvKUWqPU5EDvLJPjraFLR5ROW:vWjrevKUTPjrkp7

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.235.254:5060

Targets

- Target
  
  08f25be2b3ed65b8e8292f6c201aae55e2e41f29f10d36b9e2057223c8d35434N
- Size
  
  1.1MB
- MD5
  
  730ccfca65a7765f3daa7e7ac01bc730
- SHA1
  
  2e9a43a58d6ed60c582e4cab94bc3a11463794ab
- SHA256
  
  08f25be2b3ed65b8e8292f6c201aae55e2e41f29f10d36b9e2057223c8d35434
- SHA512
  
  17d66a5bb7ba923509b2049d98e5ac3842f9ede876908ac2e62baa3d119ed39b71e0dd35c1647cc7c825e391581e9a492d3b81a33c69716b645ad3ef9495fa12
- SSDEEP
  
  24576:v13gJnNiQQSA7Ph8QvKUWqPU5EDvLJPjraFLR5ROW:vWjrevKUTPjrkp7
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan