metasploit | 19fdf274105aabcd7e37499d2efb0ac1bdebf386eb300e3a5493f193dc8c3a7d | Triage

Sharing

General

Target

b71511f74d2ee407b35fc94ec7cd310b_JaffaCakes118
Size

85KB
Sample

240822-k498waycre
MD5

b71511f74d2ee407b35fc94ec7cd310b
SHA1

a25f849f7225dcee12dc9ff51a146ca529113ba2
SHA256

19fdf274105aabcd7e37499d2efb0ac1bdebf386eb300e3a5493f193dc8c3a7d
SHA512

a0511c9c2b45426713dbabaceb841195e5ca71b919c81f370ade61541b40e93531fce9805bd4cd7db5bca3edcb7da43bd37c3e07cfcb6f7904c3e0b9bd3315e8
SSDEEP

1536:qQoSJfftk3ws3iZW0G+ipFTwEEWFE2Vr25lqtx5u1Faek:3Nk3Ws02cEJVr25Utx5u1En

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

172.16.121.1:443

Targets

- Target
  
  b71511f74d2ee407b35fc94ec7cd310b_JaffaCakes118
- Size
  
  85KB
- MD5
  
  b71511f74d2ee407b35fc94ec7cd310b
- SHA1
  
  a25f849f7225dcee12dc9ff51a146ca529113ba2
- SHA256
  
  19fdf274105aabcd7e37499d2efb0ac1bdebf386eb300e3a5493f193dc8c3a7d
- SHA512
  
  a0511c9c2b45426713dbabaceb841195e5ca71b919c81f370ade61541b40e93531fce9805bd4cd7db5bca3edcb7da43bd37c3e07cfcb6f7904c3e0b9bd3315e8
- SSDEEP
  
  1536:qQoSJfftk3ws3iZW0G+ipFTwEEWFE2Vr25lqtx5u1Faek:3Nk3Ws02cEJVr25Utx5u1En
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan