metasploit | ceef35f60b78a066fa9de635f92bd00eada3e52811ec10a0b84083829a99ec58 | Triage

Sharing

General

Target

ceef35f60b78a066fa9de635f92bd00eada3e52811ec10a0b84083829a99ec58
Size

72KB
Sample

240926-cvgafavdrg
MD5

9bd1fcf69167e197386c0ba2f84cddf5
SHA1

b23c03bc4646d2175ef9c3d0ee7d8c52daba6a73
SHA256

ceef35f60b78a066fa9de635f92bd00eada3e52811ec10a0b84083829a99ec58
SHA512

aec052c78a456ede59aae59463926018982effc4c309f56d7b184e85b433c19429f2f594d02cad0472e43f96719cd7e6bc3dae20e2d625e50f3dba5339b5cbb0
SSDEEP

1536:Ikpz0d1RN98WDIa+wMUMb+KR0Nc8QsJq39:hpzy1yWDzte0Nc8QsC9

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.182.128:443

Targets

- Target
  
  ceef35f60b78a066fa9de635f92bd00eada3e52811ec10a0b84083829a99ec58
- Size
  
  72KB
- MD5
  
  9bd1fcf69167e197386c0ba2f84cddf5
- SHA1
  
  b23c03bc4646d2175ef9c3d0ee7d8c52daba6a73
- SHA256
  
  ceef35f60b78a066fa9de635f92bd00eada3e52811ec10a0b84083829a99ec58
- SHA512
  
  aec052c78a456ede59aae59463926018982effc4c309f56d7b184e85b433c19429f2f594d02cad0472e43f96719cd7e6bc3dae20e2d625e50f3dba5339b5cbb0
- SSDEEP
  
  1536:Ikpz0d1RN98WDIa+wMUMb+KR0Nc8QsJq39:hpzy1yWDzte0Nc8QsC9
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan