Extracted

• • Target

    dce106dfbe765fcb247faf75528a6d81_JaffaCakes118

  • Size

    431KB

  • MD5

    dce106dfbe765fcb247faf75528a6d81

  • SHA1

    6284a2499709b1987bb144daf745617fbca742b4

  • SHA256

    2cb9a2e5ecf3e396efd8dd748fd633a4d695fafc8941c2e04911786638cbb8d2

  • SHA512

    47d5068f65f15dbc114b119a4a8d9b947bcc699e8e65c3811394e932d86e08dd13836176710ac34f381155dcd751f94fa1976f6c52e627e12c4daeaadfdeb38a

  • SSDEEP

    12288:VekJnG34cbICiiPar0GNJ8XQ7P9GPQjWfV:W60G/+6MPmW

  Score

  10^/10

  metasploitbackdoordiscoverytrojanpersistenceprivilege_escalation

  • MetaSploit

    Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    trojanbackdoormetasploit

  • Metasploit family

    metasploit

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2