metasploit | 4d234c2492c20f209c48c5d1314eb9218cd65efd674b28e2f93d8bd7adde35f4 | Triage

Sharing

General

Target

2024-11-24_c64c3bd487b6d1d34a7cf2ac077ba19c_cobalt-strike_megazord
Size

11.1MB
Sample

241124-sjs3vs1pdp
MD5

c64c3bd487b6d1d34a7cf2ac077ba19c
SHA1

73481bf10b2658305ca5263788b44f85f5843371
SHA256

4d234c2492c20f209c48c5d1314eb9218cd65efd674b28e2f93d8bd7adde35f4
SHA512

f267ac6b60df583447dd4a798695ce4eccd87f3d3a88c101c988de2c1df691e55ec6b9188d4cbd63f4b0894f1f430bdb23b082e05040ebd7bbadff05160084a2
SSDEEP

98304:HNty57QQPujFFL7PBVOoAABT12NoF2GOZcr/ktiDJWt5dZ/Zvh:HNO2/ZVOoAABOowGwXwVWt5dt

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

metasploit_stager

C2

192.168.1.150:4444

Targets

- Target
  
  2024-11-24_c64c3bd487b6d1d34a7cf2ac077ba19c_cobalt-strike_megazord
- Size
  
  11.1MB
- MD5
  
  c64c3bd487b6d1d34a7cf2ac077ba19c
- SHA1
  
  73481bf10b2658305ca5263788b44f85f5843371
- SHA256
  
  4d234c2492c20f209c48c5d1314eb9218cd65efd674b28e2f93d8bd7adde35f4
- SHA512
  
  f267ac6b60df583447dd4a798695ce4eccd87f3d3a88c101c988de2c1df691e55ec6b9188d4cbd63f4b0894f1f430bdb23b082e05040ebd7bbadff05160084a2
- SSDEEP
  
  98304:HNty57QQPujFFL7PBVOoAABT12NoF2GOZcr/ktiDJWt5dZ/Zvh:HNO2/ZVOoAABOowGwXwVWt5dt
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2