metasploit | ca0f768f90e017ea7da95b672e69cb598c079a820c26222de2f7f39cb21d5121 | Triage

Sharing

General

Target

ca0f768f90e017ea7da95b672e69cb598c079a820c26222de2f7f39cb21d5121N.exe
Size

72KB
Sample

241226-faw2yaxjct
MD5

5866800f64006e06bd28cd52ee3d1410
SHA1

d63bb8cb5bb1405235d44f7f3ccb685aa33918fc
SHA256

ca0f768f90e017ea7da95b672e69cb598c079a820c26222de2f7f39cb21d5121
SHA512

edca45655b32a3d7a71a01c77540f8fd10995de88f63c76993ab527ab578747509102afcd1d16b507afac44e46fbf5bf5c230c073dd3ef8f61b6f3545cfeb8bc
SSDEEP

1536:IvvNbOHIwU3n9ReIe8Mb+KR0Nc8QsJq39:gxOHIwc94Qe0Nc8QsC9

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.101.204:6666

Targets

- Target
  
  ca0f768f90e017ea7da95b672e69cb598c079a820c26222de2f7f39cb21d5121N.exe
- Size
  
  72KB
- MD5
  
  5866800f64006e06bd28cd52ee3d1410
- SHA1
  
  d63bb8cb5bb1405235d44f7f3ccb685aa33918fc
- SHA256
  
  ca0f768f90e017ea7da95b672e69cb598c079a820c26222de2f7f39cb21d5121
- SHA512
  
  edca45655b32a3d7a71a01c77540f8fd10995de88f63c76993ab527ab578747509102afcd1d16b507afac44e46fbf5bf5c230c073dd3ef8f61b6f3545cfeb8bc
- SSDEEP
  
  1536:IvvNbOHIwU3n9ReIe8Mb+KR0Nc8QsJq39:gxOHIwc94Qe0Nc8QsC9
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan