metasploit | aca73653f5952be15003b61b02765e4175365b2c3f0a10230fd9bfead66c7344 | Triage

Sharing

General

Target

c445a6a47cbef1dbaa9c3bf4732124bf_JaffaCakes118
Size

72KB
Sample

241204-zcgvkswjek
MD5

c445a6a47cbef1dbaa9c3bf4732124bf
SHA1

edfbcff0c1a8c969274083f44cb54f759277985e
SHA256

aca73653f5952be15003b61b02765e4175365b2c3f0a10230fd9bfead66c7344
SHA512

128fa073ef1ebe1adc959ac97ca32d1e660ccad1811e8327edf5df65913f3c7f758db5bdb7a300ab456eb5adeaec2b7bb4d823a375d4f8912c83a9fd5f30157d
SSDEEP

1536:IkeuH+GzHt2UpuXGhH0PKvIfaTwCeiWT7GRKB9Mb+KR0Nc8QsJq39:5euH+QHtrukH0YIfcjkT7VB9e0Nc8Qss

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

209.40.204.137:7055

Targets

- Target
  
  c445a6a47cbef1dbaa9c3bf4732124bf_JaffaCakes118
- Size
  
  72KB
- MD5
  
  c445a6a47cbef1dbaa9c3bf4732124bf
- SHA1
  
  edfbcff0c1a8c969274083f44cb54f759277985e
- SHA256
  
  aca73653f5952be15003b61b02765e4175365b2c3f0a10230fd9bfead66c7344
- SHA512
  
  128fa073ef1ebe1adc959ac97ca32d1e660ccad1811e8327edf5df65913f3c7f758db5bdb7a300ab456eb5adeaec2b7bb4d823a375d4f8912c83a9fd5f30157d
- SSDEEP
  
  1536:IkeuH+GzHt2UpuXGhH0PKvIfaTwCeiWT7GRKB9Mb+KR0Nc8QsJq39:5euH+QHtrukH0YIfcjkT7VB9e0Nc8Qss
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan