metasploit | ec0ba8ecb2317a119760a961151bfd9d4833d37ade36048102c4e1769f8c091e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

67eda4ecd0bbcb605283dad824b835ab884ff531cbf0fe718a176df1698e3ee2N.exe
Size

72KB
Sample

241112-j6wmts1qan
MD5

ad4737312e7c6d5b11ee6101b56e4f07
SHA1

99e454e6f73fedabce32ec8cf80d2aff2eb05f7f
SHA256

ec0ba8ecb2317a119760a961151bfd9d4833d37ade36048102c4e1769f8c091e
SHA512

ec2f0654d62f18cc237a05a4ec594f60937ecd34e288f324c84ed801c4dff4c72733d1e62367326802af04d62eff9276c8327fadabe931ff6de56cb292628d6f
SSDEEP

1536:IgwCfqZsAD9IDfFvFIZ2O+bdciFYm+nEMb+KR0Nc8QsJq3zM:W45yID9vFq+dbFYm+Ee0Nc8QsCzM

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

10.10.1.13:444

Targets

- Target
  
  67eda4ecd0bbcb605283dad824b835ab884ff531cbf0fe718a176df1698e3ee2N.exe
- Size
  
  72KB
- MD5
  
  ad4737312e7c6d5b11ee6101b56e4f07
- SHA1
  
  99e454e6f73fedabce32ec8cf80d2aff2eb05f7f
- SHA256
  
  ec0ba8ecb2317a119760a961151bfd9d4833d37ade36048102c4e1769f8c091e
- SHA512
  
  ec2f0654d62f18cc237a05a4ec594f60937ecd34e288f324c84ed801c4dff4c72733d1e62367326802af04d62eff9276c8327fadabe931ff6de56cb292628d6f
- SSDEEP
  
  1536:IgwCfqZsAD9IDfFvFIZ2O+bdciFYm+nEMb+KR0Nc8QsJq3zM:W45yID9vFq+dbFYm+Ee0Nc8QsCzM
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan