metasploit | ef6ba422b84ed7ed640b62295d35b8d12af3cad525356598bfd5962c3ddcfa74 | Triage

Sharing

General

Target

e5a251644c2541b87fcf869fd3ceb4ea_JaffaCakes118
Size

37KB
Sample

241212-kwtwxsypcs
MD5

e5a251644c2541b87fcf869fd3ceb4ea
SHA1

ef50882c25d04a4914818b35c0f488220cf5196e
SHA256

ef6ba422b84ed7ed640b62295d35b8d12af3cad525356598bfd5962c3ddcfa74
SHA512

5d34486433a412e91ee44e760ad519040c29f0ae455d0c79b72ebfc7c99df8275f885bbdc92470b4ee9e0e56c1f2fbbd9d842110dbdb4b785b8ee252ac7c13ff
SSDEEP

768:mVAjeqSQgo2MdLeI2lA/ixAwhqLSNlM1KFZ6lRZ95x:Q+MTTu6uwwQlMwoh5x

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

127.0.0.1:4444

Targets

- Target
  
  e5a251644c2541b87fcf869fd3ceb4ea_JaffaCakes118
- Size
  
  37KB
- MD5
  
  e5a251644c2541b87fcf869fd3ceb4ea
- SHA1
  
  ef50882c25d04a4914818b35c0f488220cf5196e
- SHA256
  
  ef6ba422b84ed7ed640b62295d35b8d12af3cad525356598bfd5962c3ddcfa74
- SHA512
  
  5d34486433a412e91ee44e760ad519040c29f0ae455d0c79b72ebfc7c99df8275f885bbdc92470b4ee9e0e56c1f2fbbd9d842110dbdb4b785b8ee252ac7c13ff
- SSDEEP
  
  768:mVAjeqSQgo2MdLeI2lA/ixAwhqLSNlM1KFZ6lRZ95x:Q+MTTu6uwwQlMwoh5x
Score

10^/10

metasploit backdoor trojan discovery
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoordiscoverytrojan