metasploit | cae94284592af774243f420d9de3960c2f8a1bc54173b84884514229e0c4cca1 | Triage

Sharing

General

Target

dea036811884b34adb10d28397d38b48_JaffaCakes118
Size

43KB
Sample

241210-1ncknswjcj
MD5

dea036811884b34adb10d28397d38b48
SHA1

bbc4d6170925488a223249269643849abbf43744
SHA256

cae94284592af774243f420d9de3960c2f8a1bc54173b84884514229e0c4cca1
SHA512

9b0003aba10b357ddd55ff7ca26bce4ebfa92fb2940331f11da76686efa7e3f82b4024e8e4bc44af63ce1fb63d74a837b6d3dbb2a1ef13d5eb05c9a798e1ce15
SSDEEP

768:lJoD8bR3JkpnEEGUnPiM3ZtY2ARXOQ15vGG+T7w6rAsZU:lJa8lJ+EEYMflAJVPA7w3

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

metasploit_stager

C2

192.168.1.30:4444

Targets

- Target
  
  dea036811884b34adb10d28397d38b48_JaffaCakes118
- Size
  
  43KB
- MD5
  
  dea036811884b34adb10d28397d38b48
- SHA1
  
  bbc4d6170925488a223249269643849abbf43744
- SHA256
  
  cae94284592af774243f420d9de3960c2f8a1bc54173b84884514229e0c4cca1
- SHA512
  
  9b0003aba10b357ddd55ff7ca26bce4ebfa92fb2940331f11da76686efa7e3f82b4024e8e4bc44af63ce1fb63d74a837b6d3dbb2a1ef13d5eb05c9a798e1ce15
- SSDEEP
  
  768:lJoD8bR3JkpnEEGUnPiM3ZtY2ARXOQ15vGG+T7w6rAsZU:lJa8lJ+EEYMflAJVPA7w3
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan