metasploit | 01b41f7f1b58bef3a696d38ab45ad09b94027a7cc5ee488b71cdbf5bea0088e9 | Triage

Sharing

General

Target

01b41f7f1b58bef3a696d38ab45ad09b94027a7cc5ee488b71cdbf5bea0088e9N.exe
Size

101KB
Sample

241119-pnc1na1kdk
MD5

474df6779ce1eb6cd0651ccaf415f870
SHA1

482f5616ee855560e8f4301e05c1a673b27e0f20
SHA256

01b41f7f1b58bef3a696d38ab45ad09b94027a7cc5ee488b71cdbf5bea0088e9
SHA512

0e51df1d27e35564648e326558fbadac4fbfb199b9b05a58bc611bbca8ddb59d9e8d4d4b42de90996915447e2086d7d106b58ec4072519b99e19cc9b6f81214b
SSDEEP

1536:t9nFwbSNmCij6z7l+KheSjaFbBNvKpUySG:jq6z7fheBNINSG

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

10.10.1.13:444

Targets

- Target
  
  01b41f7f1b58bef3a696d38ab45ad09b94027a7cc5ee488b71cdbf5bea0088e9N.exe
- Size
  
  101KB
- MD5
  
  474df6779ce1eb6cd0651ccaf415f870
- SHA1
  
  482f5616ee855560e8f4301e05c1a673b27e0f20
- SHA256
  
  01b41f7f1b58bef3a696d38ab45ad09b94027a7cc5ee488b71cdbf5bea0088e9
- SHA512
  
  0e51df1d27e35564648e326558fbadac4fbfb199b9b05a58bc611bbca8ddb59d9e8d4d4b42de90996915447e2086d7d106b58ec4072519b99e19cc9b6f81214b
- SSDEEP
  
  1536:t9nFwbSNmCij6z7l+KheSjaFbBNvKpUySG:jq6z7fheBNINSG
Score

10^/10

metasploit backdoor trojan discovery
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoordiscoverytrojan