metasploit | be1e8d2a2fb98fa8f759001961c11585f4b1a824420cf2eef5c457d876ec5d40 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

be1e8d2a2fb98fa8f759001961c11585f4b1a824420cf2eef5c457d876ec5d40N.exe
Size

72KB
Sample

241222-rdfd5szre1
MD5

1c43cc9488b6844cb33a31a227ae9f10
SHA1

6972b87d9d2cdf79b344344face197a79ada040b
SHA256

be1e8d2a2fb98fa8f759001961c11585f4b1a824420cf2eef5c457d876ec5d40
SHA512

9fa23d117687e366773460ccc1cd9819e8e6d8c53ccb3449710862b27c8b33c65df83f0ffceae68efc8ccfcb0313d6f8c5cb5057b72e54df29b1445e8b0bae31
SSDEEP

1536:IJ/6VO9SK+lN4wZKVsRJTvV8TMb+KR0Nc8QsJq39:BcwNR4Mse0Nc8QsC9

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

36.155.161.120:46407

Targets

- Target
  
  be1e8d2a2fb98fa8f759001961c11585f4b1a824420cf2eef5c457d876ec5d40N.exe
- Size
  
  72KB
- MD5
  
  1c43cc9488b6844cb33a31a227ae9f10
- SHA1
  
  6972b87d9d2cdf79b344344face197a79ada040b
- SHA256
  
  be1e8d2a2fb98fa8f759001961c11585f4b1a824420cf2eef5c457d876ec5d40
- SHA512
  
  9fa23d117687e366773460ccc1cd9819e8e6d8c53ccb3449710862b27c8b33c65df83f0ffceae68efc8ccfcb0313d6f8c5cb5057b72e54df29b1445e8b0bae31
- SSDEEP
  
  1536:IJ/6VO9SK+lN4wZKVsRJTvV8TMb+KR0Nc8QsJq39:BcwNR4Mse0Nc8QsC9
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan