metasploit | e89ae1e327d233ff7978850ecf51d48fcdcebfeba9386311bcf2660c97b6ee9d | Triage

Sharing

General

Target

e89ae1e327d233ff7978850ecf51d48fcdcebfeba9386311bcf2660c97b6ee9d.zip
Size

43KB
Sample

250327-stnacswm17
MD5

bec7564ba763a2edd7fa45dbc17c0190
SHA1

4aec163b63002d79534bf51ffe3796f05c0a7906
SHA256

e89ae1e327d233ff7978850ecf51d48fcdcebfeba9386311bcf2660c97b6ee9d
SHA512

5c7df5a1de62b27c452133a84d4118496a9b1bb77dbed06a11b4eb11e00e81ac9759885cd9e8d2959e544cb148ba7301f2d8ccf326f565e736d2be1ed77e094c
SSDEEP

768:TaZIrbrw25DC/ryUekwjE9hXKmRiRzB5XKssAWlexjm4bCSX48WWWpCwNSw9G:TLrw+C/BXwICmRiZBEssAzxz13WTsn

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

121.36.149.225:6677

Targets

- Target
  
  16644661d726e6aa78a34e050142970b02eb809f73371a38a60ca097a9e0e28f.exe
- Size
  
  72KB
- MD5
  
  9e4ee6fef209b53995d0bf59e63c29c7
- SHA1
  
  e6cd7afba3dfaa27c8803bc2188602b1df2a387c
- SHA256
  
  16644661d726e6aa78a34e050142970b02eb809f73371a38a60ca097a9e0e28f
- SHA512
  
  7bf867cac8d6de813185befe95438e4f2245e717123382130e811634a69c4befe1c3f973ee216bb603e04a2a9251f9789638cba9da108c36a38f6bbcd4ab0c7a
- SSDEEP
  
  1536:I1euL+MPRe0OCSmbQfg43UFGdAOG7Mb+KR0Nc8QsJq39:aP+kzO5mbQfyGdfke0Nc8QsC9
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan