metasploit | 0a324817a648a37f9f060278823fca48a88bc4768f4d7f85262bfd496a714d7e | Triage

Sharing

General

Target

0a324817a648a37f9f060278823fca48a88bc4768f4d7f85262bfd496a714d7e
Size

97KB
Sample

241002-pawwlsygjb
MD5

7929ba3cb83fc2cc711360c354c18ca1
SHA1

776e337a3c2595da17f12d58f21c273750b00682
SHA256

0a324817a648a37f9f060278823fca48a88bc4768f4d7f85262bfd496a714d7e
SHA512

6a63a957d7034a6c91d25d4d2e718a70c9a47906c1ed3f8907394d7265b742ec1ef7c7c190f7e56ee6bde316b6927b9bc20a4e7661954300a36a5f4e485ba2fa
SSDEEP

1536:FxBtQncPQ8ihAkOJDBNGePs1PIsumGTLXZ1vCBj:F1flvCl

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.1.109:1304

Targets

- Target
  
  0a324817a648a37f9f060278823fca48a88bc4768f4d7f85262bfd496a714d7e
- Size
  
  97KB
- MD5
  
  7929ba3cb83fc2cc711360c354c18ca1
- SHA1
  
  776e337a3c2595da17f12d58f21c273750b00682
- SHA256
  
  0a324817a648a37f9f060278823fca48a88bc4768f4d7f85262bfd496a714d7e
- SHA512
  
  6a63a957d7034a6c91d25d4d2e718a70c9a47906c1ed3f8907394d7265b742ec1ef7c7c190f7e56ee6bde316b6927b9bc20a4e7661954300a36a5f4e485ba2fa
- SSDEEP
  
  1536:FxBtQncPQ8ihAkOJDBNGePs1PIsumGTLXZ1vCBj:F1flvCl
Score

10^/10

metasploit backdoor trojan discovery
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2