metasploit | b63f3cac2870cc36a579a667933278738c1a4344e1dadfb2fd4f9bc6992fb4e9 | Triage

Sharing

General

Target

d72c64cdf4cb33f38f760861909f6dd4_JaffaCakes118
Size

217KB
Sample

241208-qabfcayqbm
MD5

d72c64cdf4cb33f38f760861909f6dd4
SHA1

704bf11e0bd98ea8ab70208140013d7644978e3e
SHA256

b63f3cac2870cc36a579a667933278738c1a4344e1dadfb2fd4f9bc6992fb4e9
SHA512

63b336106636a1f9483594d613055c476e607f22be3a2839c8094953c912b5df724cb3ded0a44672a8690a34d5f622bb7d22ec0a21dba3ea17df8439df952abb
SSDEEP

3072:P2WVA4qBPwf3TkoL5vaZXCboKV3OiqfGH5clJ7NdW5W+U60QiAhuHjvMFFM2aI9o:+l7PwYI52XCbo3iqfG4Y5WNYiDH7MQG

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Targets

- Target
  
  d72c64cdf4cb33f38f760861909f6dd4_JaffaCakes118
- Size
  
  217KB
- MD5
  
  d72c64cdf4cb33f38f760861909f6dd4
- SHA1
  
  704bf11e0bd98ea8ab70208140013d7644978e3e
- SHA256
  
  b63f3cac2870cc36a579a667933278738c1a4344e1dadfb2fd4f9bc6992fb4e9
- SHA512
  
  63b336106636a1f9483594d613055c476e607f22be3a2839c8094953c912b5df724cb3ded0a44672a8690a34d5f622bb7d22ec0a21dba3ea17df8439df952abb
- SSDEEP
  
  3072:P2WVA4qBPwf3TkoL5vaZXCboKV3OiqfGH5clJ7NdW5W+U60QiAhuHjvMFFM2aI9o:+l7PwYI52XCbo3iqfG4Y5WNYiDH7MQG
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan