metasploit | d3a051c8fb8ae35e052add3e118fe2e3fd914e68e12a90d6633d64917f102562 | Triage

Sharing

General

Target

7840eb3d2e5506d84cd8aff67561e4d9_JaffaCakes118
Size

72KB
Sample

240527-hlw77abe41
MD5

7840eb3d2e5506d84cd8aff67561e4d9
SHA1

9c63610712af9eefdd5fbe36d9d8cad9975686e8
SHA256

d3a051c8fb8ae35e052add3e118fe2e3fd914e68e12a90d6633d64917f102562
SHA512

c253b6d9a8a2e71c743284f8f55c1bff5ec45ccff9e917da8c76f3f3f369fa6125c3960331c2737dacfa3b06872577b9020c6748063d5decff45411673448993
SSDEEP

1536:ITl8PEpVdFZ/f0CV/A713A4XHyDII4Mb+KR0Nc8QsJq39:+FpVdn/ffoPHyDIHe0Nc8QsC9

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.0.42:4444

Targets

- Target
  
  7840eb3d2e5506d84cd8aff67561e4d9_JaffaCakes118
- Size
  
  72KB
- MD5
  
  7840eb3d2e5506d84cd8aff67561e4d9
- SHA1
  
  9c63610712af9eefdd5fbe36d9d8cad9975686e8
- SHA256
  
  d3a051c8fb8ae35e052add3e118fe2e3fd914e68e12a90d6633d64917f102562
- SHA512
  
  c253b6d9a8a2e71c743284f8f55c1bff5ec45ccff9e917da8c76f3f3f369fa6125c3960331c2737dacfa3b06872577b9020c6748063d5decff45411673448993
- SSDEEP
  
  1536:ITl8PEpVdFZ/f0CV/A713A4XHyDII4Mb+KR0Nc8QsJq39:+FpVdn/ffoPHyDIHe0Nc8QsC9
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan