metasploit | c6573d4870548a7eb238213ded5c3b5b8b7944cfcc54d4c1b59a3d56d764fd5f

Analysis

max time kernel
117s
max time network
121s
platform
windows7_x64
resource
win7-20240708-en
resource tags

arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
submitted
08-12-2024 07:29

Target

d5ea005b7f5a45f0b83fd1d43b7a5acc_JaffaCakes118.exe
Size

92KB
MD5

d5ea005b7f5a45f0b83fd1d43b7a5acc
SHA1

42bed10f16715f6740d3b23139a644191c943daa
SHA256

c6573d4870548a7eb238213ded5c3b5b8b7944cfcc54d4c1b59a3d56d764fd5f
SHA512

7c4f57a39cd958537bccb2400992bbb167e766df2e7fa91433c87a475a9d0f57551c6765d75caac6202502202e7be5dfdf2dd377a220c5fa55da1038e3518dae
SSDEEP

1536:QR5JvcSGJXUGRwbEEwtAe4fLlfmc/AakO2O3aa0oIRaHc6n:QRsSGJZUE1iLlOcATxO3axow+Tn

Score

10^/10

Family

metasploit

Version

windows/shell_reverse_tcp

201.87.145.136:9034

MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
trojan backdoor metasploit
Metasploit family
metasploit

C:\Users\Admin\AppData\Local\Temp\d5ea005b7f5a45f0b83fd1d43b7a5acc_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\d5ea005b7f5a45f0b83fd1d43b7a5acc_JaffaCakes118.exe"
1⤵
PID:2848

memory/2848-0-0x0000000000220000-0x0000000000221000-memory.dmp

Filesize
4KB

Download