metasploit | e97202ead053b4776c18961ba090a5d026ea4f603d77ab0f31bb35d2d05ae4f4 | Triage

Sharing

General

Target

e97202ead053b4776c18961ba090a5d026ea4f603d77ab0f31bb35d2d05ae4f4
Size

577KB
Sample

250328-kaej4stwc1
MD5

5b0652ba52a396a9abaf9f317c816992
SHA1

7de8c7a840250acbea895a8efefa439ae6ad4d2b
SHA256

e97202ead053b4776c18961ba090a5d026ea4f603d77ab0f31bb35d2d05ae4f4
SHA512

a7fd62e8cd4ca02e638b57e5b841b2e046d7121dc89e5b2e710311f0ffe22f0ff80421b8ef0c073445eb3e13cddbc52e340e43c91c8fa8d0e51cb0ade6826bdd
SSDEEP

12288:Lcr01UwMtXt5HoVwk3Ta77Hp0fWAUmBFmidF6vYFLdqoJB:LlOwMt4uQ6vYFLdqoJB

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://10.0.0.128:8899/OAxT

Attributes

headers User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0; NP06)

Targets

- Target
  
  e97202ead053b4776c18961ba090a5d026ea4f603d77ab0f31bb35d2d05ae4f4
- Size
  
  577KB
- MD5
  
  5b0652ba52a396a9abaf9f317c816992
- SHA1
  
  7de8c7a840250acbea895a8efefa439ae6ad4d2b
- SHA256
  
  e97202ead053b4776c18961ba090a5d026ea4f603d77ab0f31bb35d2d05ae4f4
- SHA512
  
  a7fd62e8cd4ca02e638b57e5b841b2e046d7121dc89e5b2e710311f0ffe22f0ff80421b8ef0c073445eb3e13cddbc52e340e43c91c8fa8d0e51cb0ade6826bdd
- SSDEEP
  
  12288:Lcr01UwMtXt5HoVwk3Ta77Hp0fWAUmBFmidF6vYFLdqoJB:LlOwMt4uQ6vYFLdqoJB
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan