metasploit | d6890b818490b85993ca5d1eb04cb0bb4f2d7164e2f17bc1ef4720a91f9286f1 | Triage

Sharing

General

Target

d6890b818490b85993ca5d1eb04cb0bb4f2d7164e2f17bc1ef4720a91f9286f1N.exe
Size

2.9MB
Sample

241219-zazbvaynh1
MD5

df09b3497f971b23a3cba43c993d96a0
SHA1

65294090484f3b9f3a3a42315224d4164af5f31f
SHA256

d6890b818490b85993ca5d1eb04cb0bb4f2d7164e2f17bc1ef4720a91f9286f1
SHA512

734c4402c144197412558de8465a8c117acbcd45d589e43563abd3a7237e5937af6b5901bd2b3d58ad4e5ace2ca9db2d611f82c79e7f93fba834732fbc9e4f36
SSDEEP

49152:TQqZpGDKw6c8xeIs3jonnUvLVqGT6M9qp4n0qx2UUG2No8BSw7KgI5rG:TpifinwUG+5qx2U787KgYr

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_http

C2

http://192.168.1.12:8443/Jk5MJgbw_dZjImIjBEFeMwFrH6f-fm9hs2zTaMhZ6oC7_mevgOpPkuhrCAiy9T7vPGlyj8T89D8WC9WtyJf137-bRXhhcpj4ZR1-DB4

Targets

- Target
  
  d6890b818490b85993ca5d1eb04cb0bb4f2d7164e2f17bc1ef4720a91f9286f1N.exe
- Size
  
  2.9MB
- MD5
  
  df09b3497f971b23a3cba43c993d96a0
- SHA1
  
  65294090484f3b9f3a3a42315224d4164af5f31f
- SHA256
  
  d6890b818490b85993ca5d1eb04cb0bb4f2d7164e2f17bc1ef4720a91f9286f1
- SHA512
  
  734c4402c144197412558de8465a8c117acbcd45d589e43563abd3a7237e5937af6b5901bd2b3d58ad4e5ace2ca9db2d611f82c79e7f93fba834732fbc9e4f36
- SSDEEP
  
  49152:TQqZpGDKw6c8xeIs3jonnUvLVqGT6M9qp4n0qx2UUG2No8BSw7KgI5rG:TpifinwUG+5qx2U787KgYr
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

metasploitbackdoortrojan