metasploit | a2e404695c1a519d562c94e6ae662d458acc85212e95bfbb1f5822d1464b5c9a | Triage

Sharing

General

Target

df919ebc1844ce7804a10c91335a3523_JaffaCakes118
Size

88KB
Sample

240914-f24absyfmg
MD5

df919ebc1844ce7804a10c91335a3523
SHA1

0c67329baa8378366bb8b40d24d4deb9e44e74b8
SHA256

a2e404695c1a519d562c94e6ae662d458acc85212e95bfbb1f5822d1464b5c9a
SHA512

d0e403e0f26b6860db492a250ad157719d6f991315145f520e5f0934caa91e9794ec15859bda13232c394b2a807f8c099e4850b367147db83d4e0e4b70af20a4
SSDEEP

1536:ZiQh6OiGabbloIBLIHqKqvZORIKskz/oo16rXS:ZimSbblKqxO6rqIri

Score

10^/10

metasploit discovery

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.0.13:4444

Targets

- Target
  
  df919ebc1844ce7804a10c91335a3523_JaffaCakes118
- Size
  
  88KB
- MD5
  
  df919ebc1844ce7804a10c91335a3523
- SHA1
  
  0c67329baa8378366bb8b40d24d4deb9e44e74b8
- SHA256
  
  a2e404695c1a519d562c94e6ae662d458acc85212e95bfbb1f5822d1464b5c9a
- SHA512
  
  d0e403e0f26b6860db492a250ad157719d6f991315145f520e5f0934caa91e9794ec15859bda13232c394b2a807f8c099e4850b367147db83d4e0e4b70af20a4
- SSDEEP
  
  1536:ZiQh6OiGabbloIBLIHqKqvZORIKskz/oo16rXS:ZimSbblKqxO6rqIri
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2