metasploit | 2cc02e59b591d3aefbfc810c80399bf5fbe83d0fcb62eba249e2a524898178f9 | Triage

Sharing

General

Target

ec1277982ea21c2713d9bb7ada3ff749_JaffaCakes118
Size

254KB
Sample

241213-se7epatnbr
MD5

ec1277982ea21c2713d9bb7ada3ff749
SHA1

5c8876c3ccf67b8076467d3f8bf88ab8cd0fafa7
SHA256

2cc02e59b591d3aefbfc810c80399bf5fbe83d0fcb62eba249e2a524898178f9
SHA512

af608c5be9584cbf8896d771398b5ce488ef0436002110880ba59742040303e2fe7033949625fa31d0d16d0fe8257bb6acc75718c5d540b2a5eb8849c1bcfbf8
SSDEEP

6144:H6gCNNxVkHeHvaWgWOWdZ4bCHpnliLqkrHyE2R6h:H6lLx6+HvkWOWQbCHpHkr+6h

Score

10^/10

metasploit discovery

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

10.10.10.194:1337

Targets

- Target
  
  ec1277982ea21c2713d9bb7ada3ff749_JaffaCakes118
- Size
  
  254KB
- MD5
  
  ec1277982ea21c2713d9bb7ada3ff749
- SHA1
  
  5c8876c3ccf67b8076467d3f8bf88ab8cd0fafa7
- SHA256
  
  2cc02e59b591d3aefbfc810c80399bf5fbe83d0fcb62eba249e2a524898178f9
- SHA512
  
  af608c5be9584cbf8896d771398b5ce488ef0436002110880ba59742040303e2fe7033949625fa31d0d16d0fe8257bb6acc75718c5d540b2a5eb8849c1bcfbf8
- SSDEEP
  
  6144:H6gCNNxVkHeHvaWgWOWdZ4bCHpnliLqkrHyE2R6h:H6lLx6+HvkWOWQbCHpHkr+6h
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2