metasploit | af3b18fc4f1f234c9ea3b60184387a73a5b1a8bbe484e06fdd47646d8080b3bb | Triage

Sharing

General

Target

JaffaCakes118_af3b18fc4f1f234c9ea3b60184387a73a5b1a8bbe484e06fdd47646d8080b3bb
Size

8KB
Sample

241225-p1yg5atjgs
MD5

0a52df917b493a6c3e09ecc86a64f76b
SHA1

1437864e97e185c6450ffbfe0ce525f1ff65a7ea
SHA256

af3b18fc4f1f234c9ea3b60184387a73a5b1a8bbe484e06fdd47646d8080b3bb
SHA512

279055e19e953ad47ea83f34e9ea694de5be2eb8234becce8fc0d08d83d4dff2762f02721fb053db6bc9970b2847aafa2f5024a1d3d10831e3ccd0f13d05af1b
SSDEEP

192:/RI/Zp7Xg1o75DLM7r3uO62Vpnb/P3n19BsOqa5DPMjx70h0VpOx:udg279ur+O62VRz319SXap2xgh0Vwx

Score

10^/10

metasploit execution

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

141.98.83.139:8939

Targets

- Target
  
  JaffaCakes118_af3b18fc4f1f234c9ea3b60184387a73a5b1a8bbe484e06fdd47646d8080b3bb
- Size
  
  8KB
- MD5
  
  0a52df917b493a6c3e09ecc86a64f76b
- SHA1
  
  1437864e97e185c6450ffbfe0ce525f1ff65a7ea
- SHA256
  
  af3b18fc4f1f234c9ea3b60184387a73a5b1a8bbe484e06fdd47646d8080b3bb
- SHA512
  
  279055e19e953ad47ea83f34e9ea694de5be2eb8234becce8fc0d08d83d4dff2762f02721fb053db6bc9970b2847aafa2f5024a1d3d10831e3ccd0f13d05af1b
- SSDEEP
  
  192:/RI/Zp7Xg1o75DLM7r3uO62Vpnb/P3n19BsOqa5DPMjx70h0VpOx:udg279ur+O62VRz319SXap2xgh0Vwx
Score

3^/10

execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2