metasploit | cdb90f310916756a4eddf9e509f00f60faadee8134ea925e3fe4c94d0c05066a | Triage

Sharing

General

Target

afcfdba2912e471d45cc95278ac64b90_JaffaCakes118
Size

76KB
Sample

241129-jjfyvstlcs
MD5

afcfdba2912e471d45cc95278ac64b90
SHA1

adfc9e7a6a73c078fd30576a26010a8f291c082d
SHA256

cdb90f310916756a4eddf9e509f00f60faadee8134ea925e3fe4c94d0c05066a
SHA512

4d8362edf8bc4f4083eaa62dded3f75dfb56d4cd21fb2142c3b41f55290f05e90b08b28560d20b5d4ebdefd68fc036b29e55d5d02b3984d7a4c1169c869eb0c5
SSDEEP

768:CUBMqCMcwdmgZH3lpUer9DtTuSChpnc0pK5IrhFohs2C7OoMy5fhho+/Ocl2KHAz:CUBaqlGkTq4IrCs2C7Oxy5rosOlAh9Y

Score

10^/10

metasploit discovery

Malware Config

Extracted

Family

metasploit

Version

encoder/fnstenv_mov

Targets

- Target
  
  afcfdba2912e471d45cc95278ac64b90_JaffaCakes118
- Size
  
  76KB
- MD5
  
  afcfdba2912e471d45cc95278ac64b90
- SHA1
  
  adfc9e7a6a73c078fd30576a26010a8f291c082d
- SHA256
  
  cdb90f310916756a4eddf9e509f00f60faadee8134ea925e3fe4c94d0c05066a
- SHA512
  
  4d8362edf8bc4f4083eaa62dded3f75dfb56d4cd21fb2142c3b41f55290f05e90b08b28560d20b5d4ebdefd68fc036b29e55d5d02b3984d7a4c1169c869eb0c5
- SSDEEP
  
  768:CUBMqCMcwdmgZH3lpUer9DtTuSChpnc0pK5IrhFohs2C7OoMy5fhho+/Ocl2KHAz:CUBaqlGkTq4IrCs2C7Oxy5rosOlAh9Y
Score

6^/10

discovery
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Share Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2