metasploit | 4d985245cadd66eb073a14c38faa766cc3129893944e0c65e10194e218a95af3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

258b7e5e65079e00e19896a3abfc4090_JaffaCakes118
Size

288KB
Sample

240704-l4trkaxerb
MD5

258b7e5e65079e00e19896a3abfc4090
SHA1

78b40c6c55a9ec2ac56e55ed7ad1f05d205a559e
SHA256

4d985245cadd66eb073a14c38faa766cc3129893944e0c65e10194e218a95af3
SHA512

b1fe70cb79b5ac45681a4378f695ba7c5a226ee466e64730a56b32b8290e134ddf3b794edff420185744dd9c7cc48302d18a20bb87b985b8ba399efc71ddf9a8
SSDEEP

6144:LuL/q829L1itG2jKS/7nZvm7GLJM55Vby67cK:LuL52Z1Hbo7Vm7GLJMxby6

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.1.4:443

Targets

- Target
  
  258b7e5e65079e00e19896a3abfc4090_JaffaCakes118
- Size
  
  288KB
- MD5
  
  258b7e5e65079e00e19896a3abfc4090
- SHA1
  
  78b40c6c55a9ec2ac56e55ed7ad1f05d205a559e
- SHA256
  
  4d985245cadd66eb073a14c38faa766cc3129893944e0c65e10194e218a95af3
- SHA512
  
  b1fe70cb79b5ac45681a4378f695ba7c5a226ee466e64730a56b32b8290e134ddf3b794edff420185744dd9c7cc48302d18a20bb87b985b8ba399efc71ddf9a8
- SSDEEP
  
  6144:LuL/q829L1itG2jKS/7nZvm7GLJM55Vby67cK:LuL52Z1Hbo7Vm7GLJMxby6
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan