metasploit | 0547ef2b6dd1316e9b494af8cf167941d4493993799a266339d4cbb515a9b799 | Triage

Sharing

General

Target

e62f7975b554bac58cc9280c632a31dc_JaffaCakes118
Size

46KB
Sample

240917-gp2reaxfpb
MD5

e62f7975b554bac58cc9280c632a31dc
SHA1

833f93f5e1c0e7720c46d254a05979c9d65b63c9
SHA256

0547ef2b6dd1316e9b494af8cf167941d4493993799a266339d4cbb515a9b799
SHA512

6592ad1cd936179e1a5d65683324fc536cc53afb9eb06c35db08c45b7a1bb18f511cbe9ee6bfd45872752468a43faa37786f3b75a34e4386d5e7241ceff4e8ca
SSDEEP

768:IqF+cE2WXoulPkgKCiFQULIs45yLAifc5ioGWgoF5IraG8t0sSKvsk2Rq3:Iq5EJnl8XCiKUoANc5HGB+er/wPB+q3

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

58.124.238.136:444

Targets

- Target
  
  e62f7975b554bac58cc9280c632a31dc_JaffaCakes118
- Size
  
  46KB
- MD5
  
  e62f7975b554bac58cc9280c632a31dc
- SHA1
  
  833f93f5e1c0e7720c46d254a05979c9d65b63c9
- SHA256
  
  0547ef2b6dd1316e9b494af8cf167941d4493993799a266339d4cbb515a9b799
- SHA512
  
  6592ad1cd936179e1a5d65683324fc536cc53afb9eb06c35db08c45b7a1bb18f511cbe9ee6bfd45872752468a43faa37786f3b75a34e4386d5e7241ceff4e8ca
- SSDEEP
  
  768:IqF+cE2WXoulPkgKCiFQULIs45yLAifc5ioGWgoF5IraG8t0sSKvsk2Rq3:Iq5EJnl8XCiKUoANc5HGB+er/wPB+q3
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan