metasploit | ae23afb6398067d60e348b5b0c2d817088f88f738371b8a8218cc52a3054d76f | Triage

Sharing

General

Target

932ea9d9c710d08ded01bf290cc4138c_JaffaCakes118
Size

3.4MB
Sample

241124-htr87sypgz
MD5

932ea9d9c710d08ded01bf290cc4138c
SHA1

a6e6895ef52014e59ab943d96f5c84a68f9d3aab
SHA256

ae23afb6398067d60e348b5b0c2d817088f88f738371b8a8218cc52a3054d76f
SHA512

54e65d16e21ecd62f8c209fbf3bfb7dc690dbfe83ed1d9cc160600bc6da3569c8228923c2a86c972b676d8a281bcd48c9f96196c7982f500f593768a3a20cd5c
SSDEEP

98304:5oMbSGjZjYfQfQzZ/eSInsoeMXlnzBB0YGYtDAmVglqW9tes8YKJ:aM8xZzIsor1zBB0PaAdkW9tesTK

Score

10^/10

metasploit backdoor discovery pyinstaller trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Targets

- Target
  
  932ea9d9c710d08ded01bf290cc4138c_JaffaCakes118
- Size
  
  3.4MB
- MD5
  
  932ea9d9c710d08ded01bf290cc4138c
- SHA1
  
  a6e6895ef52014e59ab943d96f5c84a68f9d3aab
- SHA256
  
  ae23afb6398067d60e348b5b0c2d817088f88f738371b8a8218cc52a3054d76f
- SHA512
  
  54e65d16e21ecd62f8c209fbf3bfb7dc690dbfe83ed1d9cc160600bc6da3569c8228923c2a86c972b676d8a281bcd48c9f96196c7982f500f593768a3a20cd5c
- SSDEEP
  
  98304:5oMbSGjZjYfQfQzZ/eSInsoeMXlnzBB0YGYtDAmVglqW9tes8YKJ:aM8xZzIsor1zBB0PaAdkW9tesTK
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan