metasploit | df61a42a90a6a29f7164f6ac1e24ca123c0bc5fa683691b57412056c5bc7e0b4 | Triage

Sharing

General

Target

b44d2b620d708fb6918c0eec537330de_JaffaCakes118
Size

72KB
Sample

241130-bmyzvaznbl
MD5

b44d2b620d708fb6918c0eec537330de
SHA1

7d209eddc0eb20496fae749929e9082832bdcb7b
SHA256

df61a42a90a6a29f7164f6ac1e24ca123c0bc5fa683691b57412056c5bc7e0b4
SHA512

d34f359e0fcd0c1ced9fb68fa4956fddd41fe6126bfbe63bfa4d8eb6aec87cb5fbc991a84480184173e5eaab8908a33832deb3a0368265546092a4d15641aeec
SSDEEP

768:RqB6Z5ww5AXTQ7Mkc2n601nKFCaIqkUaxhxD8+dAb64KqeoqzpKxR6ThHRXv:RVZkTQQkln6ejrib4hlzpGYTv

Score

10^/10

metasploit discovery

Malware Config

Extracted

Family

metasploit

Version

encoder/fnstenv_mov

Targets

- Target
  
  b44d2b620d708fb6918c0eec537330de_JaffaCakes118
- Size
  
  72KB
- MD5
  
  b44d2b620d708fb6918c0eec537330de
- SHA1
  
  7d209eddc0eb20496fae749929e9082832bdcb7b
- SHA256
  
  df61a42a90a6a29f7164f6ac1e24ca123c0bc5fa683691b57412056c5bc7e0b4
- SHA512
  
  d34f359e0fcd0c1ced9fb68fa4956fddd41fe6126bfbe63bfa4d8eb6aec87cb5fbc991a84480184173e5eaab8908a33832deb3a0368265546092a4d15641aeec
- SSDEEP
  
  768:RqB6Z5ww5AXTQ7Mkc2n601nKFCaIqkUaxhxD8+dAb64KqeoqzpKxR6ThHRXv:RVZkTQQkln6ejrib4hlzpGYTv
Score

5^/10

discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2