Overview

overview

10

Static

static

3

f18c5f40d8...18.exe

windows7-x64

10

f18c5f40d8...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f18c5f40d89297303c4e027880dc2458_JaffaCakes118

  • Size

    368KB

  • Sample

    240415-vks6csbd85

  • MD5

    f18c5f40d89297303c4e027880dc2458

  • SHA1

    6b5384f09ddadbc30f095a99b64bc2d87ef519e2

  • SHA256

    1919f0d867bf6be54f4fe7d5dfaa843798f9098f6d36f0aba0369bd26185eb14

  • SHA512

    eb5b57bab08e174ed717c6e916d41ae43f3945f08fdebe805755496e2b80b8c356f32aafed7feb8e24e1c25140b638ca9753404125a265d1ccc83e73f28ceeca

  • SSDEEP

    384:rDNzDC5wd+POeCnlNJwz56qIpcRPZwa0s1UDzGq7W0m:rDZDychw964l1K

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

13.233.145.133:53066

Targets

    • Target

      f18c5f40d89297303c4e027880dc2458_JaffaCakes118

    • Size

      368KB

    • MD5

      f18c5f40d89297303c4e027880dc2458

    • SHA1

      6b5384f09ddadbc30f095a99b64bc2d87ef519e2

    • SHA256

      1919f0d867bf6be54f4fe7d5dfaa843798f9098f6d36f0aba0369bd26185eb14

    • SHA512

      eb5b57bab08e174ed717c6e916d41ae43f3945f08fdebe805755496e2b80b8c356f32aafed7feb8e24e1c25140b638ca9753404125a265d1ccc83e73f28ceeca

    • SSDEEP

      384:rDNzDC5wd+POeCnlNJwz56qIpcRPZwa0s1UDzGq7W0m:rDZDychw964l1K

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks