metasploit | 6d22d9e2c7a3c3d0063a8faec8dc2adccaff2b834a3fe9a1bb4bad6e43ae91dc | Triage

Resubmissions

07-11-2024 15:19

241107-sqffcavcpn 10

26-10-2024 21:50

241026-1pw1pszape 10

26-10-2024 21:43

241026-1k53tazhlq 10

Sharing

General

Target

6d22d9e2c7a3c3d0063a8faec8dc2adccaff2b834a3fe9a1bb4bad6e43ae91dc
Size

2.8MB
Sample

241026-1pw1pszape
MD5

e04ecdd8ffdc552a1487fc06fe7b7d32
SHA1

6bbc335e0a245fff6a76609cce91002a9b4fa4da
SHA256

6d22d9e2c7a3c3d0063a8faec8dc2adccaff2b834a3fe9a1bb4bad6e43ae91dc
SHA512

8c7d78d34efcfe4fff5657c2d77fa166e018705e0430472a1ed68404e1e2643dfc1216d1a4e10d6e900409edc301139ebd8513e06f9b1c63721f80ffa2a8e906
SSDEEP

49152:QTv13vUrb/TvvO90dL3BmAFd4A64nsfJ2O4w7mtxwenpxgmM9GgoW0D1/xhN/v38:m3vXR907bN/1XVK

Score

10^/10

metasploit backdoor discovery persistence privilege_escalation trojan

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

192.168.65.128:9999

Targets

- Target
  
  6d22d9e2c7a3c3d0063a8faec8dc2adccaff2b834a3fe9a1bb4bad6e43ae91dc
- Size
  
  2.8MB
- MD5
  
  e04ecdd8ffdc552a1487fc06fe7b7d32
- SHA1
  
  6bbc335e0a245fff6a76609cce91002a9b4fa4da
- SHA256
  
  6d22d9e2c7a3c3d0063a8faec8dc2adccaff2b834a3fe9a1bb4bad6e43ae91dc
- SHA512
  
  8c7d78d34efcfe4fff5657c2d77fa166e018705e0430472a1ed68404e1e2643dfc1216d1a4e10d6e900409edc301139ebd8513e06f9b1c63721f80ffa2a8e906
- SSDEEP
  
  49152:QTv13vUrb/TvvO90dL3BmAFd4A64nsfJ2O4w7mtxwenpxgmM9GgoW0D1/xhN/v38:m3vXR907bN/1XVK
Score

10^/10

metasploit backdoor discovery persistence privilege_escalation trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverypersistenceprivilege_escalationtrojan