metasploit | d835c78775de69ac8518d9fa77685111d845ed7d122994eb34e26b49c74e5a44 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5a10fa2c85ffc466a361e6d115b20698_JaffaCakes118
Size

72KB
Sample

240719-cqzk8a1ema
MD5

5a10fa2c85ffc466a361e6d115b20698
SHA1

9d5ab076278170a5247d880854ec0bb8f1c55f90
SHA256

d835c78775de69ac8518d9fa77685111d845ed7d122994eb34e26b49c74e5a44
SHA512

84d6c1309d926a81100a2bc560ebb101615ea8fff32a52f97cf2493d7c63f5b77dba1314aa1ab080b408c8a78dc04c2651484b5785ab721476d1f818ae2e493a
SSDEEP

1536:IFWCgn36BTdgVJM93ejUQoZWP8Mb+KR0Nc8QsJq39:SxNvZc8e0Nc8QsC9

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/call4_dword_xor

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.1.2:8000

Targets

- Target
  
  5a10fa2c85ffc466a361e6d115b20698_JaffaCakes118
- Size
  
  72KB
- MD5
  
  5a10fa2c85ffc466a361e6d115b20698
- SHA1
  
  9d5ab076278170a5247d880854ec0bb8f1c55f90
- SHA256
  
  d835c78775de69ac8518d9fa77685111d845ed7d122994eb34e26b49c74e5a44
- SHA512
  
  84d6c1309d926a81100a2bc560ebb101615ea8fff32a52f97cf2493d7c63f5b77dba1314aa1ab080b408c8a78dc04c2651484b5785ab721476d1f818ae2e493a
- SSDEEP
  
  1536:IFWCgn36BTdgVJM93ejUQoZWP8Mb+KR0Nc8QsJq39:SxNvZc8e0Nc8QsC9
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan