metasploit | d89b3de883726515580eddbbd9d1dad155717cdb40efbc90c8a03603e3574be5 | Triage

Sharing

General

Target

JaffaCakes118_d89b3de883726515580eddbbd9d1dad155717cdb40efbc90c8a03603e3574be5
Size

200KB
Sample

241223-25jkzsvjax
MD5

4beb9eb50689d1cfaf107b417ac719fc
SHA1

dd8155486ce59cfb8c7d045879c2cc5a668e4c42
SHA256

d89b3de883726515580eddbbd9d1dad155717cdb40efbc90c8a03603e3574be5
SHA512

1bbcfd1a45123fb1d618d0411f3e733cc967fcda422a50442a0c4b8aa731735cb18f70fb2966baf82802478621f19612c42da3356218be64ba3ad500a16fbb95
SSDEEP

6144:hjFgNCGC5hxfuU3e/EjQ48ZD1rEggSnxf:hhgNCjlnO/EUtR2Hgxf

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://georgiaonsale.com:443/task.html /start.html /smm.html /cal.html?usersid=hw#########-##

Targets

- Target
  
  2e417482a83d63f83f19dff658e7eec05ffb89c4d7b9e417eb8ec2951c4973fd.exe
- Size
  
  383KB
- MD5
  
  58d62f826da094b6ab7da7e0c1e05a23
- SHA1
  
  ca53b321d55c1ddbe0194f71e07ba26c1a8ec40d
- SHA256
  
  2e417482a83d63f83f19dff658e7eec05ffb89c4d7b9e417eb8ec2951c4973fd
- SHA512
  
  136d97ad71550fc17335dfbcc92ab181f4446afab5b94891d334e0f034465b47010c8cadd986b73615c3fe65485d46b3d913c945a683a6e4cb7aa763437f81b5
- SSDEEP
  
  6144:VedlOgSNOqgVndy73viT5jSoLY4c8Hs/x68uSUtiL9xoqd2nrC9rhkIPuyxs3B8j:VedUjOqqy+TLY4sc8uSUkL9x1d1kIPu0
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan