metasploit | c5a252c47270ebaf21f9756e9219db67fa7f71c94544095c67f3e0a70b5dc6ad | Triage

Sharing

General

Target

c5a252c47270ebaf21f9756e9219db67fa7f71c94544095c67f3e0a70b5dc6adN
Size

853KB
Sample

241108-epdy8sxpcp
MD5

2778d9b306b88b1017cbdafc012b5f20
SHA1

a29fae7a2c5d938fe511c78c944cf60a51a3a115
SHA256

c5a252c47270ebaf21f9756e9219db67fa7f71c94544095c67f3e0a70b5dc6ad
SHA512

05b836eb24338e845db810b4f30b8714add8f57c6a074a240ae29f69b181edd67a4945af6b01d652092656ea4b6266bab2a1179cf867364067d24828c2e3bad5
SSDEEP

12288:V96DnWMiizuuD8j2iMukMqVYNQc9/5cp8RPm:MnWXMukMqVYuc9x8

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.51.59:4433

Targets

- Target
  
  c5a252c47270ebaf21f9756e9219db67fa7f71c94544095c67f3e0a70b5dc6adN
- Size
  
  853KB
- MD5
  
  2778d9b306b88b1017cbdafc012b5f20
- SHA1
  
  a29fae7a2c5d938fe511c78c944cf60a51a3a115
- SHA256
  
  c5a252c47270ebaf21f9756e9219db67fa7f71c94544095c67f3e0a70b5dc6ad
- SHA512
  
  05b836eb24338e845db810b4f30b8714add8f57c6a074a240ae29f69b181edd67a4945af6b01d652092656ea4b6266bab2a1179cf867364067d24828c2e3bad5
- SSDEEP
  
  12288:V96DnWMiizuuD8j2iMukMqVYNQc9/5cp8RPm:MnWXMukMqVYuc9x8
Score

10^/10

metasploit backdoor trojan discovery
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoordiscoverytrojan