metasploit | 16d2f3def92818fabfe5923d3f7082489f15a6c9f69af284f06b12b9db36d137 | Triage

Sharing

General

Target

JaffaCakes118_16d2f3def92818fabfe5923d3f7082489f15a6c9f69af284f06b12b9db36d137
Size

2KB
Sample

241225-vm1cfszjfs
MD5

3a631008270227b31a2ca1181ac33813
SHA1

00179975d4e93dc318fd19e38210aa7a0bad0f81
SHA256

16d2f3def92818fabfe5923d3f7082489f15a6c9f69af284f06b12b9db36d137
SHA512

9aa3ebe860b08c83417d075726a6cf2b589c65265522342aeeec591376eaa9cf65fd9f8a2b62214510f8d586105fcd333248d3524a9b74dc8a30ae9cff5e93e8

Score

10^/10

metasploit execution

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

172.17.0.24:4564

Targets

- Target
  
  JaffaCakes118_16d2f3def92818fabfe5923d3f7082489f15a6c9f69af284f06b12b9db36d137
- Size
  
  2KB
- MD5
  
  3a631008270227b31a2ca1181ac33813
- SHA1
  
  00179975d4e93dc318fd19e38210aa7a0bad0f81
- SHA256
  
  16d2f3def92818fabfe5923d3f7082489f15a6c9f69af284f06b12b9db36d137
- SHA512
  
  9aa3ebe860b08c83417d075726a6cf2b589c65265522342aeeec591376eaa9cf65fd9f8a2b62214510f8d586105fcd333248d3524a9b74dc8a30ae9cff5e93e8
Score

3^/10

execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2