Extracted

• • Target

    f5f047d423671c1285618446c0450542_JaffaCakes118

  • Size

    72KB

  • MD5

    f5f047d423671c1285618446c0450542

  • SHA1

    356f6878bd3579240f88edc87b89552c86a9f81f

  • SHA256

    19fc15f5fb03d827d352cec67baacf19954b69219d40f8ad5bc4de18064c60b8

  • SHA512

    3b3fbde9b5612368416ffeb139e326665854f324565f4147b6145182abf20125d6097609fc9c68aaa4870f298820e2aa1ed62214b19e519c7022d8c2fc37e0a1

  • SSDEEP

    1536:/5sc375Ab4EBanICQFuIiyd6gWHpkeaPRAERg+ldHDbLLtvQnXpS0UiCHvrl:/p5wfCQF92HpkeWpS+lNDbLxQG7p

  Score

  10^/10

  metasploitbackdoordiscoveryevasiontrojan

  • MetaSploit

    Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    trojanbackdoormetasploit

  • Metasploit family

    metasploit

  • Modifies firewall policy service

    evasion

  • Modifies security service

    evasion

  • Network Share Discovery

    Attempt to gather information on host network.

    discovery

  • Drops file in System32 directory

  behavioral1behavioral2