metasploit | 5078bbe45cacbd32644f9ed80448773baa59e286bf9d4cd9aa7c445b56211a26 | Triage

Sharing

General

Target

d59c2ec5ab7806a58e1307d4c3cf61f3_JaffaCakes118
Size

72KB
Sample

240909-edj14sshjc
MD5

d59c2ec5ab7806a58e1307d4c3cf61f3
SHA1

52ffb84b46f63ce572219e570ccfbea99fcb9a7b
SHA256

5078bbe45cacbd32644f9ed80448773baa59e286bf9d4cd9aa7c445b56211a26
SHA512

3ad29352ca1a2d7b13b17ea9ebf1cb828b86ef8935de444e21564693c769393766feb9d056eaf844eeb91f9e4e04887717bf54390a33684bf8731a02f4e8449c
SSDEEP

1536:I5XFf2Ii8nLn84kvH0Sx9mnxi9U0Z/QbMb+KR0Nc8QsJq39:sVtnT84Oxui9U0R+e0Nc8QsC9

Score

10^/10

metasploit discovery

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.11.7:4444

Targets

- Target
  
  d59c2ec5ab7806a58e1307d4c3cf61f3_JaffaCakes118
- Size
  
  72KB
- MD5
  
  d59c2ec5ab7806a58e1307d4c3cf61f3
- SHA1
  
  52ffb84b46f63ce572219e570ccfbea99fcb9a7b
- SHA256
  
  5078bbe45cacbd32644f9ed80448773baa59e286bf9d4cd9aa7c445b56211a26
- SHA512
  
  3ad29352ca1a2d7b13b17ea9ebf1cb828b86ef8935de444e21564693c769393766feb9d056eaf844eeb91f9e4e04887717bf54390a33684bf8731a02f4e8449c
- SSDEEP
  
  1536:I5XFf2Ii8nLn84kvH0Sx9mnxi9U0Z/QbMb+KR0Nc8QsJq39:sVtnT84Oxui9U0R+e0Nc8QsC9
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2