Overview

overview

10

Static

static

3

47bd620a1e...18.exe

windows7-x64

10

47bd620a1e...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    47bd620a1ee07cb77a4035e4935f97bf_JaffaCakes118

  • Size

    14KB

  • Sample

    240515-yg5xjagf9x

  • MD5

    47bd620a1ee07cb77a4035e4935f97bf

  • SHA1

    e1ef146bae1ae3a6e810d548fd32d4da511c03f2

  • SHA256

    b9c1c709a4c551763d93da5b253f146fe6399d713f5d2bfa25adcf4d46fb5b0a

  • SHA512

    9a30762134b2771e9444005c564814fbea6c0cdaaccf4505f1632e17f545f0a3a10be30993a36a16890e4b97b15fe8b569e113d324338bd5b38f8afb5928d988

  • SSDEEP

    384:IlrwOlfJAN0KIFhK4EQbu2ZSuaepCwP/Z0YxMpve/:Il6wMRQbu+SbACwPOYCA

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp_dns

C2

enesbasarir.duckdns.org:4443

Targets

    • Target

      47bd620a1ee07cb77a4035e4935f97bf_JaffaCakes118

    • Size

      14KB

    • MD5

      47bd620a1ee07cb77a4035e4935f97bf

    • SHA1

      e1ef146bae1ae3a6e810d548fd32d4da511c03f2

    • SHA256

      b9c1c709a4c551763d93da5b253f146fe6399d713f5d2bfa25adcf4d46fb5b0a

    • SHA512

      9a30762134b2771e9444005c564814fbea6c0cdaaccf4505f1632e17f545f0a3a10be30993a36a16890e4b97b15fe8b569e113d324338bd5b38f8afb5928d988

    • SSDEEP

      384:IlrwOlfJAN0KIFhK4EQbu2ZSuaepCwP/Z0YxMpve/:Il6wMRQbu+SbACwPOYCA

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks