metasploit | 1ee5f148e0f4374e040bace8e339f5dfc970549a86b84893c8c736fb4f80c02a | Triage

Submit
Reports

Overview

overview

Static

static

fb15f8575b...18.exe

windows7-x64

fb15f8575b...18.exe

windows10-2004-x64

Sharing

General

Target

fb15f8575b7123c3de70f8cb94a87ec2_JaffaCakes118
Size

7.9MB
Sample

240419-yz5pgsfb3z
MD5

fb15f8575b7123c3de70f8cb94a87ec2
SHA1

0dc638cefe035a8be5688a7ea0eef2c2a1472687
SHA256

1ee5f148e0f4374e040bace8e339f5dfc970549a86b84893c8c736fb4f80c02a
SHA512

9014066379534f05fefbaa26e7f87e024dfca9f05ca91647b877516ef6f945e4a12b31ee2dc442aed96c821cd14cc19cab8259c48d9f4bf091cf66ee6cbd13c3
SSDEEP

98304:gVdyCVnP6oDlexqwl7ze9OREe9HW1X2ffO4:mnIoDlW19q9OREeRW1X2ffO4

Score

10^/10

metasploit backdoor trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

fb15f8575b7123c3de70f8cb94a87ec2_JaffaCakes118.exe

Resource

win7-20240220-en

metasploit backdoor trojan

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

fb15f8575b7123c3de70f8cb94a87ec2_JaffaCakes118.exe

Resource

win10v2004-20240412-en

metasploit backdoor trojan

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Targets

- Target
  
  fb15f8575b7123c3de70f8cb94a87ec2_JaffaCakes118
- Size
  
  7.9MB
- MD5
  
  fb15f8575b7123c3de70f8cb94a87ec2
- SHA1
  
  0dc638cefe035a8be5688a7ea0eef2c2a1472687
- SHA256
  
  1ee5f148e0f4374e040bace8e339f5dfc970549a86b84893c8c736fb4f80c02a
- SHA512
  
  9014066379534f05fefbaa26e7f87e024dfca9f05ca91647b877516ef6f945e4a12b31ee2dc442aed96c821cd14cc19cab8259c48d9f4bf091cf66ee6cbd13c3
- SSDEEP
  
  98304:gVdyCVnP6oDlexqwl7ze9OREe9HW1X2ffO4:mnIoDlW19q9OREeRW1X2ffO4
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan

© 2018-2024

Terms | Privacy