metasploit | c12e1ba55ed1a77b43d60e9c2e682daffb9195d8c6ca6fcd1135ef214bcebff5 | Triage

Submit
Reports

Overview

overview

Static

static

8

c12e1ba55e...5.docm

windows7-x64

c12e1ba55e...5.docm

windows10-2004-x64

7

Sharing

General

Target

c12e1ba55ed1a77b43d60e9c2e682daffb9195d8c6ca6fcd1135ef214bcebff5
Size

76KB
Sample

241218-1rtclasrht
MD5

48be04dfaaed78575b4103d151dca15b
SHA1

7156db91750023c5c4f8d9ce1c75afdadc219377
SHA256

c12e1ba55ed1a77b43d60e9c2e682daffb9195d8c6ca6fcd1135ef214bcebff5
SHA512

c737f4e54189c0cf97b27fbf1ff5c557a9b2014facf94db82e2ce880e550e421bb649e25fb2f15af28fbb451163bbb75b2d5328a3df10330f3566806090b26af
SSDEEP

1536:XcpXXk3lkptEwwcWy9pSufJ0Mq0BM6Gnh8rzd02:CnA6m7yeuiMqjEdH

Score

10^/10

metasploit backdoor discovery macro trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

c12e1ba55ed1a77b43d60e9c2e682daffb9195d8c6ca6fcd1135ef214bcebff5.docm

Resource

win7-20240903-en

metasploit backdoor discovery trojan

windows7-x64

11 signatures

60 seconds

Behavioral task

behavioral2

Sample

c12e1ba55ed1a77b43d60e9c2e682daffb9195d8c6ca6fcd1135ef214bcebff5.docm

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

60 seconds

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

10.10.8.2:55687

Targets

- Target
  
  c12e1ba55ed1a77b43d60e9c2e682daffb9195d8c6ca6fcd1135ef214bcebff5
- Size
  
  76KB
- MD5
  
  48be04dfaaed78575b4103d151dca15b
- SHA1
  
  7156db91750023c5c4f8d9ce1c75afdadc219377
- SHA256
  
  c12e1ba55ed1a77b43d60e9c2e682daffb9195d8c6ca6fcd1135ef214bcebff5
- SHA512
  
  c737f4e54189c0cf97b27fbf1ff5c557a9b2014facf94db82e2ce880e550e421bb649e25fb2f15af28fbb451163bbb75b2d5328a3df10330f3566806090b26af
- SSDEEP
  
  1536:XcpXXk3lkptEwwcWy9pSufJ0Mq0BM6Gnh8rzd02:CnA6m7yeuiMqjEdH
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

© 2018-2025

Terms | Privacy