Overview

overview

10

Static

static

3

8d61ff0f41...18.exe

windows7-x64

10

8d61ff0f41...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8d61ff0f41f7030f8f14c77af2b12534_JaffaCakes118

  • Size

    72KB

  • Sample

    241103-zdcbgssqhv

  • MD5

    8d61ff0f41f7030f8f14c77af2b12534

  • SHA1

    1d7812aad5676beb216a7e0c46fbcbf273ab14b3

  • SHA256

    a81f1b819347cba141e016e30f9dad3fbdde74d8c3d2e783d2b3d502f9370eda

  • SHA512

    3cde93c9a4cd9dff84653b6189ee354293376a77783112bba05d5b6c4883ca6689eca084a69a337635f5745e33c63f9bd03853cc84c8da196d011002b8555bd5

  • SSDEEP

    1536:IID1wpaKhq0qs2SLGYhjV5PQfcPdHmgxldYqtzMb+KR0Nc8QsJq39:/xwpaKg7SLG9Qht3e0Nc8QsC9

Score
10/10
metasploitbackdoordiscoverytrojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

87.185.197.215:5555

Targets

    • Target

      8d61ff0f41f7030f8f14c77af2b12534_JaffaCakes118

    • Size

      72KB

    • MD5

      8d61ff0f41f7030f8f14c77af2b12534

    • SHA1

      1d7812aad5676beb216a7e0c46fbcbf273ab14b3

    • SHA256

      a81f1b819347cba141e016e30f9dad3fbdde74d8c3d2e783d2b3d502f9370eda

    • SHA512

      3cde93c9a4cd9dff84653b6189ee354293376a77783112bba05d5b6c4883ca6689eca084a69a337635f5745e33c63f9bd03853cc84c8da196d011002b8555bd5

    • SSDEEP

      1536:IID1wpaKhq0qs2SLGYhjV5PQfcPdHmgxldYqtzMb+KR0Nc8QsJq39:/xwpaKg7SLG9Qht3e0Nc8QsC9

    Score
    10/10
    metasploitbackdoordiscoverytrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit

    • Metasploit family

      metasploit
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks