metasploit | ae17d4b8228ce0b3732341a88b448655ccdf98870e50336e3b30dbf22143c319 | Triage

Sharing

General

Target

ae17d4b8228ce0b3732341a88b448655ccdf98870e50336e3b30dbf22143c319
Size

85KB
Sample

241114-k4pxyaxakq
MD5

92b9d735187c5bc1aa57ec8e5ef3fe34
SHA1

1c5a3344986d03d1f451782100033765164c385e
SHA256

ae17d4b8228ce0b3732341a88b448655ccdf98870e50336e3b30dbf22143c319
SHA512

67a2c97f3a9b952de42bdb13ba2763eec358b7ededa43af5df35e112659696df415fdafe58e634cb57bd726000431b65392b821ab6c939e2e0e9939d8169f378
SSDEEP

1536:qKX4ncOglKTqtfpGIfX1O9B0gYy+KBumh00zhDl17AsWvDBcdPea4vZE/:7o4TvfXzy+KEm3lvPea4vZE/

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.8.205:4444

Targets

- Target
  
  ae17d4b8228ce0b3732341a88b448655ccdf98870e50336e3b30dbf22143c319
- Size
  
  85KB
- MD5
  
  92b9d735187c5bc1aa57ec8e5ef3fe34
- SHA1
  
  1c5a3344986d03d1f451782100033765164c385e
- SHA256
  
  ae17d4b8228ce0b3732341a88b448655ccdf98870e50336e3b30dbf22143c319
- SHA512
  
  67a2c97f3a9b952de42bdb13ba2763eec358b7ededa43af5df35e112659696df415fdafe58e634cb57bd726000431b65392b821ab6c939e2e0e9939d8169f378
- SSDEEP
  
  1536:qKX4ncOglKTqtfpGIfX1O9B0gYy+KBumh00zhDl17AsWvDBcdPea4vZE/:7o4TvfXzy+KEm3lvPea4vZE/
Score

10^/10

metasploit backdoor trojan discovery
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoordiscoverytrojan