metasploit | 35be62f32be6b9ae06bb49026469da8e94df018977b6146133a540e6a88e5182 | Triage

Sharing

General

Target

35be62f32be6b9ae06bb49026469da8e94df018977b6146133a540e6a88e5182.exe
Size

8KB
Sample

241115-yfr92szlew
MD5

322e4f45b7bd0978780101285cd23f83
SHA1

8a15f373bad7edf12210ae24bef250a5d44863d3
SHA256

35be62f32be6b9ae06bb49026469da8e94df018977b6146133a540e6a88e5182
SHA512

8b6fcfd16940d87bef1a8c88ed08858aa8ddd14e0f03e9fa27e5f51c4e56761968dbe047512c7e732b004021b3b95fec061aad782dc72bcbce13438d22b508d6
SSDEEP

48:is0HOkBQQbicJ1centNxE2xfhMNFF4cWkyRN9xL7zd0YybGp2B/:0hSQ+cJumPJxCfFbWku9D0hbE2Z

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

metasploit_stager

C2

192.168.10.133:1234

Targets

- Target
  
  35be62f32be6b9ae06bb49026469da8e94df018977b6146133a540e6a88e5182.exe
- Size
  
  8KB
- MD5
  
  322e4f45b7bd0978780101285cd23f83
- SHA1
  
  8a15f373bad7edf12210ae24bef250a5d44863d3
- SHA256
  
  35be62f32be6b9ae06bb49026469da8e94df018977b6146133a540e6a88e5182
- SHA512
  
  8b6fcfd16940d87bef1a8c88ed08858aa8ddd14e0f03e9fa27e5f51c4e56761968dbe047512c7e732b004021b3b95fec061aad782dc72bcbce13438d22b508d6
- SSDEEP
  
  48:is0HOkBQQbicJ1centNxE2xfhMNFF4cWkyRN9xL7zd0YybGp2B/:0hSQ+cJumPJxCfFbWku9D0hbE2Z
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan