metasploit | 4f25ca70fbaaf208a2ba5808ca528c362222d0696b7e9916bb2d860aba0aca52 | Triage

Sharing

General

Target

eeb783c528c778fdac26a5040c9c8811_JaffaCakes118
Size

193KB
Sample

240921-al3qzawcrd
MD5

eeb783c528c778fdac26a5040c9c8811
SHA1

c7ec8a07fd3404b9be732b95aae6d16ca5fc8ab6
SHA256

4f25ca70fbaaf208a2ba5808ca528c362222d0696b7e9916bb2d860aba0aca52
SHA512

7b9e9b6e8025cb947653f005260b021aa8818215c527b0d54852e1e89c3b0fca412b4f00f8b52e2881c7a472e2d6c350c2bc4bd9490f859f7f654d1325e710e2
SSDEEP

3072:u4R8qRJ0J/k25fmzraJuZQwaHzZw/Ivk45Ym4/R3P:uiJ0J/LmzraJuZQwaxvk45YPR3P

Score

10^/10

metasploit discovery

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

10.128.72.67:80

Targets

- Target
  
  eeb783c528c778fdac26a5040c9c8811_JaffaCakes118
- Size
  
  193KB
- MD5
  
  eeb783c528c778fdac26a5040c9c8811
- SHA1
  
  c7ec8a07fd3404b9be732b95aae6d16ca5fc8ab6
- SHA256
  
  4f25ca70fbaaf208a2ba5808ca528c362222d0696b7e9916bb2d860aba0aca52
- SHA512
  
  7b9e9b6e8025cb947653f005260b021aa8818215c527b0d54852e1e89c3b0fca412b4f00f8b52e2881c7a472e2d6c350c2bc4bd9490f859f7f654d1325e710e2
- SSDEEP
  
  3072:u4R8qRJ0J/k25fmzraJuZQwaHzZw/Ivk45Ym4/R3P:uiJ0J/LmzraJuZQwaxvk45YPR3P
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2