Overview

overview

10

Static

static

10

f862b77111...18.exe

windows7-x64

10

f862b77111...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f862b77111e6bebc2b0626032e2f0b27_JaffaCakes118

  • Size

    72KB

  • Sample

    240926-ptasgsxdmn

  • MD5

    f862b77111e6bebc2b0626032e2f0b27

  • SHA1

    0fa76a25941a50fce9ae0124efadb945bf72e60b

  • SHA256

    8de536a479744249e47d121f2e44e3a53806bc18e3402ffceae0b965d41cc7ba

  • SHA512

    3ac4bb46b55c3bf9e693b53b938abbcfaa233e763b99f4313eeed26c0e5a782b7a8bb6f143974816f18d22e00fa15ba1e915ac357d582e1ecb93583b992c3bd3

  • SSDEEP

    1536:IaYyNejocH3juq04iqMb+KR0Nc8QsJq39:OFjdd09qe0Nc8QsC9

Score
10/10
metasploitbackdoordiscoverytrojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

83.145.170.32:4444

Targets

    • Target

      f862b77111e6bebc2b0626032e2f0b27_JaffaCakes118

    • Size

      72KB

    • MD5

      f862b77111e6bebc2b0626032e2f0b27

    • SHA1

      0fa76a25941a50fce9ae0124efadb945bf72e60b

    • SHA256

      8de536a479744249e47d121f2e44e3a53806bc18e3402ffceae0b965d41cc7ba

    • SHA512

      3ac4bb46b55c3bf9e693b53b938abbcfaa233e763b99f4313eeed26c0e5a782b7a8bb6f143974816f18d22e00fa15ba1e915ac357d582e1ecb93583b992c3bd3

    • SSDEEP

      1536:IaYyNejocH3juq04iqMb+KR0Nc8QsJq39:OFjdd09qe0Nc8QsC9

    Score
    10/10
    metasploitbackdoordiscoverytrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks