Overview

overview

10

Static

static

3

d879a4a418...18.exe

windows7-x64

10

d879a4a418...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d879a4a4186d5f13546ba1a188992936_JaffaCakes118

  • Size

    872KB

  • Sample

    240910-sqw34azdnr

  • MD5

    d879a4a4186d5f13546ba1a188992936

  • SHA1

    78e1260a0601922dd039735acc78f4e315e6ae40

  • SHA256

    98f2d98b0318a3d2711fdecb2701cc5061bae0e3b57e26d8e777123e990ee4d8

  • SHA512

    4fdf227482fe2f36af9560efcc8f73f439c70401295b98620eb71a4324dcff43072339907cf49d7e0f1c10e3f8ca043590e66bd21825df0b11b389fd4a48156e

  • SSDEEP

    24576:ifJfz9zUnbNZgQnOmBhTG+8BWjJmG0WYNniUwdRASR:unzs5ZgQnOmBuWYORA

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

3.22.53.161:14217

Targets

    • Target

      d879a4a4186d5f13546ba1a188992936_JaffaCakes118

    • Size

      872KB

    • MD5

      d879a4a4186d5f13546ba1a188992936

    • SHA1

      78e1260a0601922dd039735acc78f4e315e6ae40

    • SHA256

      98f2d98b0318a3d2711fdecb2701cc5061bae0e3b57e26d8e777123e990ee4d8

    • SHA512

      4fdf227482fe2f36af9560efcc8f73f439c70401295b98620eb71a4324dcff43072339907cf49d7e0f1c10e3f8ca043590e66bd21825df0b11b389fd4a48156e

    • SSDEEP

      24576:ifJfz9zUnbNZgQnOmBhTG+8BWjJmG0WYNniUwdRASR:unzs5ZgQnOmBuWYORA

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks