metasploit | 154fc29993c24a2c3729f6f2b47f65dee1e806bdc164fb8eea4d92598c7994c8 | Triage

Sharing

General

Target

2025-04-17_b88e18386fecb5bac12683412e06a2e9_black-basta_cobalt-strike_elex_luca-stealer
Size

1.8MB
Sample

250417-m3k9gawrz7
MD5

b88e18386fecb5bac12683412e06a2e9
SHA1

c78f957bb69c6fb78f9e1e0ad96639e9cf8671ca
SHA256

154fc29993c24a2c3729f6f2b47f65dee1e806bdc164fb8eea4d92598c7994c8
SHA512

bf3f724d7805ce9a9bb72a107d5b2a3d280d71a21df765188556cf03d07a0e1597e90a42598b33b52d698570dc21455427db0b043a79ad34d16ce9a3c5e3dc2d
SSDEEP

49152:JQlRIEqxTzVWhOWqPBILleQCMOOILleQaL:cHqxnAOWNEfk

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.233.129:4444

Targets

- Target
  
  2025-04-17_b88e18386fecb5bac12683412e06a2e9_black-basta_cobalt-strike_elex_luca-stealer
- Size
  
  1.8MB
- MD5
  
  b88e18386fecb5bac12683412e06a2e9
- SHA1
  
  c78f957bb69c6fb78f9e1e0ad96639e9cf8671ca
- SHA256
  
  154fc29993c24a2c3729f6f2b47f65dee1e806bdc164fb8eea4d92598c7994c8
- SHA512
  
  bf3f724d7805ce9a9bb72a107d5b2a3d280d71a21df765188556cf03d07a0e1597e90a42598b33b52d698570dc21455427db0b043a79ad34d16ce9a3c5e3dc2d
- SSDEEP
  
  49152:JQlRIEqxTzVWhOWqPBILleQCMOOILleQaL:cHqxnAOWNEfk
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan