metasploit | 51e5a5cf87623e28067ad3e11e4b776e40da7a48b087dace06fafa61da115944 | Triage

Sharing

General

Target

JaffaCakes118_51e5a5cf87623e28067ad3e11e4b776e40da7a48b087dace06fafa61da115944
Size

420KB
Sample

241224-adap8awlhq
MD5

37138714886d9567719b572e1a0726d5
SHA1

3ef5b8387520245cc3bb3aeb46ea9089c238db07
SHA256

51e5a5cf87623e28067ad3e11e4b776e40da7a48b087dace06fafa61da115944
SHA512

3cc09e8a841e8c03e1e247e563ec568e814b247c39f6d2608770baa4b97859418e8225bea09f644f5f41d4808523000fba2517aab4c5e21f6b7ecf78887a8459
SSDEEP

3072:RR9bcDynvatGRtOFeI9xBumIDu/FqimNMmZK8RkEJ1gkYCRTLn94xXgq1oyO7KGP:RR9bjytGrOFeI9HkFilugONIwj7/f

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://31.14.40.134:443/jquery-3.3.1.slim.min.js

Targets

- Target
  
  JaffaCakes118_51e5a5cf87623e28067ad3e11e4b776e40da7a48b087dace06fafa61da115944
- Size
  
  420KB
- MD5
  
  37138714886d9567719b572e1a0726d5
- SHA1
  
  3ef5b8387520245cc3bb3aeb46ea9089c238db07
- SHA256
  
  51e5a5cf87623e28067ad3e11e4b776e40da7a48b087dace06fafa61da115944
- SHA512
  
  3cc09e8a841e8c03e1e247e563ec568e814b247c39f6d2608770baa4b97859418e8225bea09f644f5f41d4808523000fba2517aab4c5e21f6b7ecf78887a8459
- SSDEEP
  
  3072:RR9bcDynvatGRtOFeI9xBumIDu/FqimNMmZK8RkEJ1gkYCRTLn94xXgq1oyO7KGP:RR9bjytGrOFeI9HkFilugONIwj7/f
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan