metasploit | ae3097df8b0aff138a215ad7eee6f6a68a7a8c666b321cdb893551e5d0fd5ae3 | Triage

Sharing

General

Target

ae3097df8b0aff138a215ad7eee6f6a68a7a8c666b321cdb893551e5d0fd5ae3
Size

11.4MB
Sample

241207-cnv51szpgt
MD5

1bd58660a8ef9f950964b12a8b80349d
SHA1

9a03e1d72fc32d42697d59afbaf20d91f78b47d4
SHA256

ae3097df8b0aff138a215ad7eee6f6a68a7a8c666b321cdb893551e5d0fd5ae3
SHA512

edcabd3b80bbdfdde232203eb6603f90f9d79e4fdaab994e01e248c971f78e1e1369d9782e992e024fb8529d7c8ba695f871d1b70aed439e9258ceeb32bb6ffb
SSDEEP

196608:Jua9H1n4YZUIeevVJsv6tWKFdu9CY+7f:xyIVJsv6tWKFdu9Cx

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://124.221.120.25:6555/2Kwh

Targets

- Target
  
  ae3097df8b0aff138a215ad7eee6f6a68a7a8c666b321cdb893551e5d0fd5ae3
- Size
  
  11.4MB
- MD5
  
  1bd58660a8ef9f950964b12a8b80349d
- SHA1
  
  9a03e1d72fc32d42697d59afbaf20d91f78b47d4
- SHA256
  
  ae3097df8b0aff138a215ad7eee6f6a68a7a8c666b321cdb893551e5d0fd5ae3
- SHA512
  
  edcabd3b80bbdfdde232203eb6603f90f9d79e4fdaab994e01e248c971f78e1e1369d9782e992e024fb8529d7c8ba695f871d1b70aed439e9258ceeb32bb6ffb
- SSDEEP
  
  196608:Jua9H1n4YZUIeevVJsv6tWKFdu9CY+7f:xyIVJsv6tWKFdu9Cx
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan