metasploit | 409b4e0495dc5f5b722b12808837cb3a3d0cc477a41e9dde3524efbe175f7b56 | Triage

Sharing

General

Target

d803442b0e712451aa20ac05b2c0a51a_JaffaCakes118
Size

444KB
Sample

240910-lrxyfsygnb
MD5

d803442b0e712451aa20ac05b2c0a51a
SHA1

dbaca554cf744f1690a37a0d25bee6d202fbba50
SHA256

409b4e0495dc5f5b722b12808837cb3a3d0cc477a41e9dde3524efbe175f7b56
SHA512

8fe04ca6a077b2f78d8f62be495729d519b8c0cd11bccba6c5c75808df3c71ddd2154e8d49ea16e9852470161265eb79b89e5655cff0c9cf47d53cd19e246d0e
SSDEEP

12288:UlMsmx80wTWzpK38Sy2sUWB/Eqj5E//zQn6:UZmx80796ZsUWB/FGrM6

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Targets

- Target
  
  d803442b0e712451aa20ac05b2c0a51a_JaffaCakes118
- Size
  
  444KB
- MD5
  
  d803442b0e712451aa20ac05b2c0a51a
- SHA1
  
  dbaca554cf744f1690a37a0d25bee6d202fbba50
- SHA256
  
  409b4e0495dc5f5b722b12808837cb3a3d0cc477a41e9dde3524efbe175f7b56
- SHA512
  
  8fe04ca6a077b2f78d8f62be495729d519b8c0cd11bccba6c5c75808df3c71ddd2154e8d49ea16e9852470161265eb79b89e5655cff0c9cf47d53cd19e246d0e
- SSDEEP
  
  12288:UlMsmx80wTWzpK38Sy2sUWB/Eqj5E//zQn6:UZmx80796ZsUWB/FGrM6
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan