Extracted

• • Target

    98daa7a96559b07cf7c11684f2a7fe76_JaffaCakes118

  • Size

    47KB

  • MD5

    98daa7a96559b07cf7c11684f2a7fe76

  • SHA1

    4785ac3e1aac976562da7cfebd1b6a98524eb53a

  • SHA256

    d702789505bce555ad67c86d1e9b18edf82b5b38713e731a3a047e8a73b86e57

  • SHA512

    7a1395085475ad6007642d94cc3ba9ce68721edd4a20e888446faad76fb79ba4866b09f40a1068e5851fa86f8c40af48b4b21782f036e6b8b5266a4697acc8e1

  • SSDEEP

    768:e09XY5XpJjv+cyPyUEN/DYQwv9qNhwD7HQHuB79FRmlYy5x5IiWaKrapCOYd:e09o5X2cyPyBDwv9qrwnQO3mWyftKc0d

  Score

  10^/10

  metasploitbackdoordiscoverypersistencetrojan

  • MetaSploit

    Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    trojanbackdoormetasploit

  • Metasploit family

    metasploit

  • Adds policy Run key to start application

    persistence

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1behavioral2