metasploit | 88864434af4b23c6b9b9dcde045585e6ad597c48606197598e36656f79d400b0 | Triage

Sharing

General

Target

JaffaCakes118_88864434af4b23c6b9b9dcde045585e6ad597c48606197598e36656f79d400b0
Size

1KB
Sample

241225-eqsh1sxpcl
MD5

b547660112c64720eaa085343740793a
SHA1

6a62a8a2e30f04786a4ca126bf7df817a2fa678e
SHA256

88864434af4b23c6b9b9dcde045585e6ad597c48606197598e36656f79d400b0
SHA512

e9d8e49196aa3f0937e379e20cae25f26bde763656c9f02e2ac1e3e19cd1e50799cce1a08e22e048fa3b8f9071ffdab80731ba129762e0395dc49ec90be4ef24

Score

10^/10

metasploit backdoor execution trojan

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

172.16.106.10:5360

Targets

- Target
  
  secondmetasploit
- Size
  
  2KB
- MD5
  
  e65210b12747625e1cfa7cdcb48f9165
- SHA1
  
  e9202eb5c648056cc6ecac6b143917c05e020ca5
- SHA256
  
  900b2750946dfbf6c7360b2351dea5050c13d6c51c1b19b285e8dd62948823d6
- SHA512
  
  b7b425674831fa70a5985935a1592041b66b72d1ae15ee8d75338c1e801308f84d6cde7abd76252281c9454b1314a52ac6ab2a88849d0127ee3716026db8a971
Score

10^/10

metasploit backdoor execution trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoorexecutiontrojan

behavioral2

metasploitbackdoorexecutiontrojan