Extracted

• • Target

    a3cccf9687e345fa1195b1f070913ae3_JaffaCakes118

  • Size

    46KB

  • MD5

    a3cccf9687e345fa1195b1f070913ae3

  • SHA1

    d97fddd745f341ba51df29c28bb3aa07c1408f5b

  • SHA256

    92b55605173fa759dbcbae2381a964d14332103be54fa6676d478c07333d4ab1

  • SHA512

    b7707c77bef09f73f6502b2f93dc73e91752fe24be96c03f13fb509983515a54b174c674fe7f9e25a0bdc79d91c7e5a61ff820caa2d9501d9149d19526277489

  • SSDEEP

    768:3bY2Tuu7h47qInysiNelZaNWQWdb64cj69Hncw8/bBhdJThZ3YO:U2qW4OInyteHMIl6Bs8P/l3JT

  Score

  10^/10

  metasploitbackdoordiscoverypersistencetrojan

  • MetaSploit

    Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    trojanbackdoormetasploit

  • Metasploit family

    metasploit

  • Adds policy Run key to start application

    persistence

  • Executes dropped EXE

  • Adds Run key to start application

    persistence
  behavioral1behavioral2