metasploit | b92b2cd389f6e0d7a6df782c8e542d44d9eabc296111990739021d17418db25d | Triage

Sharing

General

Target

b92b2cd389f6e0d7a6df782c8e542d44d9eabc296111990739021d17418db25d
Size

100KB
Sample

241109-dep33swcnh
MD5

59750146aa2a20c487ee7d236cbfac30
SHA1

0acbed92ef8dbc50a72ac13e6bafc062b466317c
SHA256

b92b2cd389f6e0d7a6df782c8e542d44d9eabc296111990739021d17418db25d
SHA512

072c0979a9599676c2a77c13214b74609c22d6a5dffde47da6071c01ee5a16b4c11e072128c8686185849080f7538c7db0dda664325a01b19569ea04d3214e5b
SSDEEP

1536:9jpu4TwO5+QncfQAiZkkOIBFLTePs1qgMsxmGjLm9k/lJ:9jY4TwEeE/lJ

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.122.130:444

Targets

- Target
  
  b92b2cd389f6e0d7a6df782c8e542d44d9eabc296111990739021d17418db25d
- Size
  
  100KB
- MD5
  
  59750146aa2a20c487ee7d236cbfac30
- SHA1
  
  0acbed92ef8dbc50a72ac13e6bafc062b466317c
- SHA256
  
  b92b2cd389f6e0d7a6df782c8e542d44d9eabc296111990739021d17418db25d
- SHA512
  
  072c0979a9599676c2a77c13214b74609c22d6a5dffde47da6071c01ee5a16b4c11e072128c8686185849080f7538c7db0dda664325a01b19569ea04d3214e5b
- SSDEEP
  
  1536:9jpu4TwO5+QncfQAiZkkOIBFLTePs1qgMsxmGjLm9k/lJ:9jY4TwEeE/lJ
Score

10^/10

metasploit backdoor trojan discovery
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoordiscoverytrojan