metasploit | 75882c357856cf5c78eae252216d90ae8fe2acaded8dfa02452ded9ef3494e82 | Triage

Submit
Reports

Overview

overview

Static

static

8

75882c3578...82.doc

windows7-x64

75882c3578...82.doc

windows10-2004-x64

1

Sharing

General

Target

75882c357856cf5c78eae252216d90ae8fe2acaded8dfa02452ded9ef3494e82
Size

34KB
Sample

240629-1xkyeaxcpa
MD5

64145b8aedaf03d470a67349fd112b14
SHA1

af0c9e2cfb751f76461c917cee61318eab3b65a5
SHA256

75882c357856cf5c78eae252216d90ae8fe2acaded8dfa02452ded9ef3494e82
SHA512

52dea82fb9433814624a4ec406453457f9a9f39dde436b7676590e164d068e2783673c41d7b5f99996c326cf88b7d579022fe7324d183e067305cfa33af4afb4
SSDEEP

384:2I8iSsqdg1vA9Q60vA01z4+t90+r+p4/LZeSFqi:2F+1o9sYKr+pwZVEi

Score

10^/10

metasploit backdoor macro macro_on_action trojan

Static task

static1

macro macro_on_action

2 signatures

Behavioral task

behavioral1

Sample

75882c357856cf5c78eae252216d90ae8fe2acaded8dfa02452ded9ef3494e82.doc

Resource

win7-20240611-en

metasploit backdoor trojan

windows7-x64

8 signatures

60 seconds

Behavioral task

behavioral2

Sample

75882c357856cf5c78eae252216d90ae8fe2acaded8dfa02452ded9ef3494e82.doc

Resource

win10v2004-20240508-en

windows10-2004-x64

4 signatures

60 seconds

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.45.229:443

Targets

- Target
  
  75882c357856cf5c78eae252216d90ae8fe2acaded8dfa02452ded9ef3494e82
- Size
  
  34KB
- MD5
  
  64145b8aedaf03d470a67349fd112b14
- SHA1
  
  af0c9e2cfb751f76461c917cee61318eab3b65a5
- SHA256
  
  75882c357856cf5c78eae252216d90ae8fe2acaded8dfa02452ded9ef3494e82
- SHA512
  
  52dea82fb9433814624a4ec406453457f9a9f39dde436b7676590e164d068e2783673c41d7b5f99996c326cf88b7d579022fe7324d183e067305cfa33af4afb4
- SSDEEP
  
  384:2I8iSsqdg1vA9Q60vA01z4+t90+r+p4/LZeSFqi:2F+1o9sYKr+pwZVEi
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

macromacro_on_action

behavioral1

metasploitbackdoortrojan

behavioral2

© 2018-2024

Terms | Privacy