metasploit

General

Target

690fd04e6cf87c0515ab399c6cc6838605b6639d32fbcf5b8459520095cde18bN.exe
Size

72KB
Sample

240926-jrfm3awbjn
MD5

d33de6644257be8a3c6120f529a2a160
SHA1

b27c53fd5e26e45f7bded152808098aaf6d316c3
SHA256

690fd04e6cf87c0515ab399c6cc6838605b6639d32fbcf5b8459520095cde18b
SHA512

163f86701a8b415510be1daea49f58b50ca892ac3427809460e4f915f46577fd82fffecf51c30ce88930a6a63d2d1f57e4b8e6e52aba55659ec1f4d641820943
SSDEEP

1536:IaoLSqQCkbpEziCotLk3nODryMb+KR0Nc8QsJq39:LESBCkbpEzyWnOXye0Nc8QsC9

Score

10^/10

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_winhttp

C2

https://45.202.35.107:1108/5UuhWAjFMkJz4HLhFQtd-Qkpk9Z_gURwDpNS8SlHxsu_WujeICZzG4OGTpQ9LNJ_uu47F0MihL_3rwtMZom5cv2NDqy4mlmljoCje8CV4ngqwYFY93uzV8Kwlr_20Ld-3-YjIR1uJnebRV4CwxACE_XONh4_fLWoQ6bJR6TSzCuXvcRcotCsKs

Targets

- Target
  
  690fd04e6cf87c0515ab399c6cc6838605b6639d32fbcf5b8459520095cde18bN.exe
- Size
  
  72KB
- MD5
  
  d33de6644257be8a3c6120f529a2a160
- SHA1
  
  b27c53fd5e26e45f7bded152808098aaf6d316c3
- SHA256
  
  690fd04e6cf87c0515ab399c6cc6838605b6639d32fbcf5b8459520095cde18b
- SHA512
  
  163f86701a8b415510be1daea49f58b50ca892ac3427809460e4f915f46577fd82fffecf51c30ce88930a6a63d2d1f57e4b8e6e52aba55659ec1f4d641820943
- SSDEEP
  
  1536:IaoLSqQCkbpEziCotLk3nODryMb+KR0Nc8QsJq39:LESBCkbpEzyWnOXye0Nc8QsC9
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2