metasploit | 87248e746376e5f7e97d758e5925e347d625a30750c74f82385900ae4fd7226e | Triage

Submit
Reports

Overview

overview

Static

static

portmap.exe

windows7-x64

portmap.exe

windows10-2004-x64

Analysis

max time kernel
148s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
13-12-2024 16:19

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

portmap.exe

Resource

win7-20240729-en

metasploit backdoor trojan

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

portmap.exe

Resource

win10v2004-20241007-en

metasploit backdoor trojan

windows10-2004-x64

2 signatures

150 seconds

Report Analysis Logs

General

Target

portmap.exe
Size

7KB
MD5

0e226a7b63a798b23cc4892ed6f155c7
SHA1

fa59f8b3c1f71f9d9b86a108b90a2ef8d50f66b1
SHA256

87248e746376e5f7e97d758e5925e347d625a30750c74f82385900ae4fd7226e
SHA512

ff311672876b0f00d6726a4ee21b0485e8f4549ddf40bcfdf98a4017b29038724ff6c6ec9b34b88ec465c9b15c5c07ae3368d537093c3a1a93a13237021a9a0e
SSDEEP

24:eFGStrJ9u0/6/Rs2XnZd0BQAVAWc+AYKtRq31eNDMSeXixpmB:is04R3z0BQX+AYKM1SD9eS2B

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

10.9.8.194:49953

Signatures

MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
trojan backdoor metasploit
Metasploit family
metasploit

Processes

C:\Users\Admin\AppData\Local\Temp\portmap.exe
"C:\Users\Admin\AppData\Local\Temp\portmap.exe"
1⤵
PID:5080

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/5080-0-0x0000000140000000-0x0000000140004240-memory.dmp

Filesize
16KB

Download

© 2018-2025

Terms | Privacy