metasploit | 6dff3a3a76f1746a0199a463d38a16a1c2962fb37aab46121ba3d28c9a46e989 | Triage

Sharing

General

Target

JaffaCakes118_6dff3a3a76f1746a0199a463d38a16a1c2962fb37aab46121ba3d28c9a46e989
Size

120KB
Sample

241224-c9tt3szpej
MD5

1bfec69fedc07b6408f922c0c2efe997
SHA1

eaca351b638d740180e9724f952db94eb73236d7
SHA256

6dff3a3a76f1746a0199a463d38a16a1c2962fb37aab46121ba3d28c9a46e989
SHA512

b76c56bc4ac9d42d199d9593cbb141314dd7c2c63220038541a51eb35f965194115d75fda166b3373c3e4d6967ef5401a6afa74619c226527501008f37da7761
SSDEEP

3072:6Oyfe/akBBNnkHME3t0RfNobxVmvs5lJBdFPQL2:PyfCLBNkHME3t0NobxVmOlJBdFPQL2

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

3.69.157.220:14676

Targets

- Target
  
  a2a3fae58157737b668eb134cc8c3e0b929094ae2defeb3c92b5a8a35e5abc97
- Size
  
  272KB
- MD5
  
  2b162bb5a10513bfa4ba383e37f898a2
- SHA1
  
  080f8a6a9d50a63290cf8545360fa433b2e53335
- SHA256
  
  a2a3fae58157737b668eb134cc8c3e0b929094ae2defeb3c92b5a8a35e5abc97
- SHA512
  
  b19fbeaca6f0c67a610f02e6fd2361aba5060e9d5aca4a2fb1b2a989e7a6ce33dcce39e31a1e86148359a60908a8c1b146e0ddb850e7af60db9f7005897f960d
- SSDEEP
  
  6144:hTByFPIZfy+XrTOjKnsnvkr/FW10qN5gKAn:hTAtCy+XrKjKsn8rCJAn
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan