metasploit | c7f16cc86aeeb1446cec2eb0a3b8f269927ae709278893f5fabf3964fe659351 | Triage

Sharing

General

Target

c7f16cc86aeeb1446cec2eb0a3b8f269927ae709278893f5fabf3964fe659351
Size

14KB
Sample

241109-t2pntsxhlc
MD5

f7d2195f418801d9fd6c0d754d01459c
SHA1

00d58e0d96a5fbfbcc20392d05d06ee247ff2478
SHA256

c7f16cc86aeeb1446cec2eb0a3b8f269927ae709278893f5fabf3964fe659351
SHA512

391145ec1db9336987d4e6cbdfa09f872072d4b5ac4cb3e4f40b23a4bf595f2b58f1dd949c3c2f03da09418a793a6e505a7d58c219c753af12c9adb08132ff88
SSDEEP

192:23mbPYCfMcrfOIuZmvKQxtzlSIVX6NOrspejDMN1:VMCfrfQ6tBSI+eUN1

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://106.53.106.50:9091/KUYc

Attributes

headers User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322)

Targets

- Target
  
  c7f16cc86aeeb1446cec2eb0a3b8f269927ae709278893f5fabf3964fe659351
- Size
  
  14KB
- MD5
  
  f7d2195f418801d9fd6c0d754d01459c
- SHA1
  
  00d58e0d96a5fbfbcc20392d05d06ee247ff2478
- SHA256
  
  c7f16cc86aeeb1446cec2eb0a3b8f269927ae709278893f5fabf3964fe659351
- SHA512
  
  391145ec1db9336987d4e6cbdfa09f872072d4b5ac4cb3e4f40b23a4bf595f2b58f1dd949c3c2f03da09418a793a6e505a7d58c219c753af12c9adb08132ff88
- SSDEEP
  
  192:23mbPYCfMcrfOIuZmvKQxtzlSIVX6NOrspejDMN1:VMCfrfQ6tBSI+eUN1
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan