metasploit | 1012b75cdc2057963f62e04a26d347b9c3c2b83278c98b15c23d4c000b7eec45 | Triage

Sharing

General

Target

bfd3c756fb0202d8ef03f975bc4b0db1_JaffaCakes118
Size

2.6MB
Sample

241203-3t4x8awmgm
MD5

bfd3c756fb0202d8ef03f975bc4b0db1
SHA1

9408d16579adeb471ac72cb1fc8e80b29d0277be
SHA256

1012b75cdc2057963f62e04a26d347b9c3c2b83278c98b15c23d4c000b7eec45
SHA512

642cb88af9586775d314db17b1dddf2a0f13860b3c753714b04c0be80a45391d11e81180f55de043e31db80962400a567e7e717ea0d8492599d353463a0e6c73
SSDEEP

49152:olSHjDowustHSGKEIYvQigJJhVK0Z0Yd/uVSnky:T0nIxoigJ7c0+VSnky

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

10.0.2.15:8080

Targets

- Target
  
  bfd3c756fb0202d8ef03f975bc4b0db1_JaffaCakes118
- Size
  
  2.6MB
- MD5
  
  bfd3c756fb0202d8ef03f975bc4b0db1
- SHA1
  
  9408d16579adeb471ac72cb1fc8e80b29d0277be
- SHA256
  
  1012b75cdc2057963f62e04a26d347b9c3c2b83278c98b15c23d4c000b7eec45
- SHA512
  
  642cb88af9586775d314db17b1dddf2a0f13860b3c753714b04c0be80a45391d11e81180f55de043e31db80962400a567e7e717ea0d8492599d353463a0e6c73
- SSDEEP
  
  49152:olSHjDowustHSGKEIYvQigJJhVK0Z0Yd/uVSnky:T0nIxoigJ7c0+VSnky
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan