metasploit | ed6c216a271fe40d983fd6a7b3fb0b387b6131861382fb20c0ac4dac5435a838 | Triage

Sharing

General

Target

ed6c216a271fe40d983fd6a7b3fb0b387b6131861382fb20c0ac4dac5435a838.exe
Size

15KB
Sample

241123-bthanszqbk
MD5

1935b98626a164e6b3751b0958bb098e
SHA1

895c408f412f3cfc455cc0d7fc957e0d1d5e8f99
SHA256

ed6c216a271fe40d983fd6a7b3fb0b387b6131861382fb20c0ac4dac5435a838
SHA512

a95be28ea4bbfd2c0f14138ab7bf9ea20692b4c6600fe9b3b8dbf12a92f47fc888d4ffd4f6ba759562def9ed7a6ae8c1c4bead3364d0a76015a9f1c9e67668ba
SSDEEP

192:l4taSvxE24K9aE9anq7Fbp7htdTNFnGYeyFozC4R:lIvQK9XNx/txnnrJaWG

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_bind_tcp

Targets

- Target
  
  ed6c216a271fe40d983fd6a7b3fb0b387b6131861382fb20c0ac4dac5435a838.exe
- Size
  
  15KB
- MD5
  
  1935b98626a164e6b3751b0958bb098e
- SHA1
  
  895c408f412f3cfc455cc0d7fc957e0d1d5e8f99
- SHA256
  
  ed6c216a271fe40d983fd6a7b3fb0b387b6131861382fb20c0ac4dac5435a838
- SHA512
  
  a95be28ea4bbfd2c0f14138ab7bf9ea20692b4c6600fe9b3b8dbf12a92f47fc888d4ffd4f6ba759562def9ed7a6ae8c1c4bead3364d0a76015a9f1c9e67668ba
- SSDEEP
  
  192:l4taSvxE24K9aE9anq7Fbp7htdTNFnGYeyFozC4R:lIvQK9XNx/txnnrJaWG
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan