metasploit | bb9cc48e765341a11a58f4a1d4d6afb01d5b7d190ce98f71ec86612f8b16927c | Triage

Sharing

General

Target

ac5d9df9a28a46509167c0b94939a097_JaffaCakes118
Size

3KB
Sample

240819-ypklkaxaqm
MD5

ac5d9df9a28a46509167c0b94939a097
SHA1

fb7c5fe6d95b57a7cbd015459f2da05bd8c8a474
SHA256

bb9cc48e765341a11a58f4a1d4d6afb01d5b7d190ce98f71ec86612f8b16927c
SHA512

f84e02294ef01592f3711ba715162b278df135644bb079ac7c8ef38eb62fb17310e489926cf620ad8562ad3718dfbe59efa88f1d2a813b6699a23fbefce333d0

Score

10^/10

metasploit discovery

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

10.0.2.15:4444

Targets

- Target
  
  ac5d9df9a28a46509167c0b94939a097_JaffaCakes118
- Size
  
  3KB
- MD5
  
  ac5d9df9a28a46509167c0b94939a097
- SHA1
  
  fb7c5fe6d95b57a7cbd015459f2da05bd8c8a474
- SHA256
  
  bb9cc48e765341a11a58f4a1d4d6afb01d5b7d190ce98f71ec86612f8b16927c
- SHA512
  
  f84e02294ef01592f3711ba715162b278df135644bb079ac7c8ef38eb62fb17310e489926cf620ad8562ad3718dfbe59efa88f1d2a813b6699a23fbefce333d0
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2