metasploit | bec8e2f931bd1ae8daa8199ec1ef9ec59f5f72343cc2149333d415d5e264b1c2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bec8e2f931bd1ae8daa8199ec1ef9ec59f5f72343cc2149333d415d5e264b1c2
Size

46KB
Sample

241005-sal8ysvgpn
MD5

4f1b8d16c6e95b5c1254fdef7f280259
SHA1

3d32ce228be3a58fdff2dede8acf3e23b8201f59
SHA256

bec8e2f931bd1ae8daa8199ec1ef9ec59f5f72343cc2149333d415d5e264b1c2
SHA512

237ee93eb19e8444f1edbfdf8220b24b992bf9e0b9a360495539a34d06d7ce8b27fb2a062a964d21346cccb2155e37bbbcdd56886877710e6e0268573d0b89f8
SSDEEP

768:euyERqVbsb9VVLHSPP3lLuzZPKq0HyXtMHzEp:EVbe9VZHSPP3lLuBZ0H+tozEp

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

metasploit_stager

C2

123.60.216.83:28888

Targets

- Target
  
  bec8e2f931bd1ae8daa8199ec1ef9ec59f5f72343cc2149333d415d5e264b1c2
- Size
  
  46KB
- MD5
  
  4f1b8d16c6e95b5c1254fdef7f280259
- SHA1
  
  3d32ce228be3a58fdff2dede8acf3e23b8201f59
- SHA256
  
  bec8e2f931bd1ae8daa8199ec1ef9ec59f5f72343cc2149333d415d5e264b1c2
- SHA512
  
  237ee93eb19e8444f1edbfdf8220b24b992bf9e0b9a360495539a34d06d7ce8b27fb2a062a964d21346cccb2155e37bbbcdd56886877710e6e0268573d0b89f8
- SSDEEP
  
  768:euyERqVbsb9VVLHSPP3lLuzZPKq0HyXtMHzEp:EVbe9VZHSPP3lLuBZ0H+tozEp
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan