metasploit | 43271c749f1b0fca153bc48f2af42170525bac341d84510fd06066361513f868 | Triage

Sharing

General

Target

e8578e84d7f06a43e181997c116dfc35_JaffaCakes118
Size

37KB
Sample

240918-e78lkatdjm
MD5

e8578e84d7f06a43e181997c116dfc35
SHA1

9226f61c99ae78186164b5f4c3d788be8d48d91a
SHA256

43271c749f1b0fca153bc48f2af42170525bac341d84510fd06066361513f868
SHA512

d0070dbe8fd870224f020f08c08e3f75bcc9903d81375dccfd2eadf44691ffd54b8e8b7ceb6660eb2200b5035805741a41c94e2b0f74636e001e3bf660e17887
SSDEEP

768:rVA6StVv2rTCbInQeO7A52qaHNP9E6Di6lRZ95x:R4fjbkUZtP9E6dh5x

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.1.238:4444

Targets

- Target
  
  e8578e84d7f06a43e181997c116dfc35_JaffaCakes118
- Size
  
  37KB
- MD5
  
  e8578e84d7f06a43e181997c116dfc35
- SHA1
  
  9226f61c99ae78186164b5f4c3d788be8d48d91a
- SHA256
  
  43271c749f1b0fca153bc48f2af42170525bac341d84510fd06066361513f868
- SHA512
  
  d0070dbe8fd870224f020f08c08e3f75bcc9903d81375dccfd2eadf44691ffd54b8e8b7ceb6660eb2200b5035805741a41c94e2b0f74636e001e3bf660e17887
- SSDEEP
  
  768:rVA6StVv2rTCbInQeO7A52qaHNP9E6Di6lRZ95x:R4fjbkUZtP9E6dh5x
Score

10^/10

metasploit backdoor trojan discovery
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoordiscoverytrojan