metasploit | c94bee7fe9dc0702d703c5e5ec75b103a19bb2de0e6b3732ca79d697a7ff9f19 | Triage

Submit
Reports

Overview

overview

Static

static

7fb9709640...18.exe

windows7-x64

7fb9709640...18.exe

windows10-2004-x64

Analysis

max time kernel
142s
max time network
160s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
29-05-2024 06:02

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

7fb97096401e92ef641097f08ab45d6d_JaffaCakes118.exe

Resource

win7-20240508-en

metasploit backdoor trojan

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

7fb97096401e92ef641097f08ab45d6d_JaffaCakes118.exe

Resource

win10v2004-20240226-en

metasploit backdoor trojan

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

7fb97096401e92ef641097f08ab45d6d_JaffaCakes118.exe
Size

1024B
MD5

7fb97096401e92ef641097f08ab45d6d
SHA1

8d7d2089f4c795f94145698c814fcc0ba57562fb
SHA256

c94bee7fe9dc0702d703c5e5ec75b103a19bb2de0e6b3732ca79d697a7ff9f19
SHA512

21bef7eb8f63b012168ae91ae049f92eb1fe3d4e8efeb5d393dad3f65b189161955fca1d6d44ae44907374ca36393ff04ead0a3448bf7c7b5886c01c6394ce46

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://10.1.22.251:443/Dl5w

Signatures

MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
trojan backdoor metasploit

Processes

C:\Users\Admin\AppData\Local\Temp\7fb97096401e92ef641097f08ab45d6d_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\7fb97096401e92ef641097f08ab45d6d_JaffaCakes118.exe"
1⤵
PID:4292

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=4060 --field-trial-handle=2328,i,5873823382323802923,13134441441264702821,262144 --variations-seed-version /prefetch:8
1⤵
PID:1712

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4292-0-0x0000000000740000-0x00000000007411E8-memory.dmp

Filesize
4KB

Download

© 2018-2024

Terms | Privacy