metasploit | 4e5bf18cfe2715568e24ed9476224576020e394f7c367ffb5e2e669617c0cf59

Analysis

max time kernel
121s
max time network
122s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
30-03-2024 19:16

Target

426ea65ce19084f2189fc1a59ec7de61_JaffaCakes118.exe
Size

39KB
MD5

426ea65ce19084f2189fc1a59ec7de61
SHA1

33b345d4da9da12a32cd8fa5d99edf5b0a7581ce
SHA256

4e5bf18cfe2715568e24ed9476224576020e394f7c367ffb5e2e669617c0cf59
SHA512

b0530938b2f864fc4c73d508309db625b46c00e7c14f448212a30db236152b40dea4a44852e5f76391800f5f84270a7176bb06d300cdccff2a0fbe55355b7bfb
SSDEEP

384:si4J2j9RtsnniO3nBuYH/j//fwPh53T96ByD23YZohtI:si4c9XsnP3nkw/L+hlsByDrih

Score

10^/10

Family

metasploit

Version

windows/reverse_tcp

134.175.220.239:10086

MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
trojan backdoor metasploit

C:\Users\Admin\AppData\Local\Temp\426ea65ce19084f2189fc1a59ec7de61_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\426ea65ce19084f2189fc1a59ec7de61_JaffaCakes118.exe"
1⤵
PID:2992

memory/2992-0-0x0000000001110000-0x0000000001130000-memory.dmp

Filesize
128KB

Download
memory/2992-1-0x0000000001110000-0x0000000001130000-memory.dmp

Filesize
128KB

Download