metasploit | 6032370d2ecfeb8e51dce26e44c326fe78531aae57cf85e05c9197ac40907a38 | Triage

Sharing

General

Target

294464012a5cc5523e62584c75ac0452_JaffaCakes118
Size

281KB
Sample

240706-xl2v1azgml
MD5

294464012a5cc5523e62584c75ac0452
SHA1

ca5bb472af82208c4f86adba84afcb17d879ac16
SHA256

6032370d2ecfeb8e51dce26e44c326fe78531aae57cf85e05c9197ac40907a38
SHA512

8307f48f08a54a7ba5cc151e41405d9222792be45227262d522315b768be14158a5f85547f878952633539e439eb2ae9d5f57df88d2d9dd9e9cef16933f9808b
SSDEEP

6144:lnqqq8W/1MW8WqERmz39Wd6LacZ2yai0WqoCTVtq:l4vqYHULAU+dovKTvq

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.56.103:443

Targets

- Target
  
  294464012a5cc5523e62584c75ac0452_JaffaCakes118
- Size
  
  281KB
- MD5
  
  294464012a5cc5523e62584c75ac0452
- SHA1
  
  ca5bb472af82208c4f86adba84afcb17d879ac16
- SHA256
  
  6032370d2ecfeb8e51dce26e44c326fe78531aae57cf85e05c9197ac40907a38
- SHA512
  
  8307f48f08a54a7ba5cc151e41405d9222792be45227262d522315b768be14158a5f85547f878952633539e439eb2ae9d5f57df88d2d9dd9e9cef16933f9808b
- SSDEEP
  
  6144:lnqqq8W/1MW8WqERmz39Wd6LacZ2yai0WqoCTVtq:l4vqYHULAU+dovKTvq
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan