Overview

overview

10

Static

static

1

7a4c58e7c3...kes118

ubuntu-18.04-amd64

10

7a4c58e7c3...kes118

debian-9-armhf

1

7a4c58e7c3...kes118

debian-9-mips

7a4c58e7c3...kes118

debian-9-mipsel

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7a4c58e7c35c618b356fb189a96d3538_JaffaCakes118

  • Size

    2KB

  • Sample

    240527-yggvpsgh34

  • MD5

    7a4c58e7c35c618b356fb189a96d3538

  • SHA1

    cfd595535a40f8276f6afa03cd882d8b6164abfd

  • SHA256

    503d40a2448407918c3433c53939bc5c6dc72c0d316c71a1c88655288ec69249

  • SHA512

    0c13beb1b5697643b0704f377f44cba8a7025e0023bfe3cd7bb1213d9db4e6d6b16aba3aa0a095f7ff8b7c4151a55f1e364058e662870ecb7a69eceb1c12ec23

Score
10/10
metasploitbackdoorlinuxtrojan

Malware Config

Extracted

Family

metasploit

Version

encoder/call4_dword_xor

Targets

    • Target

      7a4c58e7c35c618b356fb189a96d3538_JaffaCakes118

    • Size

      2KB

    • MD5

      7a4c58e7c35c618b356fb189a96d3538

    • SHA1

      cfd595535a40f8276f6afa03cd882d8b6164abfd

    • SHA256

      503d40a2448407918c3433c53939bc5c6dc72c0d316c71a1c88655288ec69249

    • SHA512

      0c13beb1b5697643b0704f377f44cba8a7025e0023bfe3cd7bb1213d9db4e6d6b16aba3aa0a095f7ff8b7c4151a55f1e364058e662870ecb7a69eceb1c12ec23

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Matrix

Tasks