metasploit | b0281d426215fbcb7cdc07637567423770e689c2cd9d8155aaac34b761aa0b03 | Triage

Sharing

General

Target

JaffaCakes118_b0281d426215fbcb7cdc07637567423770e689c2cd9d8155aaac34b761aa0b03
Size

64KB
Sample

241230-hdkt7a1ldv
MD5

8aae7835168dcb0658231f5f20b987c3
SHA1

bbe9db4383c9a881fad4b51a9b6fc8975985546d
SHA256

b0281d426215fbcb7cdc07637567423770e689c2cd9d8155aaac34b761aa0b03
SHA512

3d0db2ab26d63c7ea2e034f2570ef60fd4d43ebc2f9e1bce300a03d2bd72cd403ea93c80d525eddd007a231a6c88672cb1c1f4318c7560b836203662c5f91588
SSDEEP

1536:9F5a+TxaFPNMR0JrWAb5eAqs4tyyKzTiM3ect:Ba+T8PNlJrPhqjyy82MO8

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://culunk.com:443/image-directory/ak.gif

Targets

- Target
  
  b067d608d5b9b1d312c5d4798efa57cb2bae0f36ea539854b42bb6ef5754f71f
- Size
  
  184KB
- MD5
  
  4a6059632251f11d6c61b272effe6cf8
- SHA1
  
  c114b70cfa36840fb3439d3e0b60e8235c8c052f
- SHA256
  
  b067d608d5b9b1d312c5d4798efa57cb2bae0f36ea539854b42bb6ef5754f71f
- SHA512
  
  b747362267590e0dbff7b6e81de6609b5801ef0a6e9d98feef961a3e408b86ea030f9c97c88dfe96eab3812d61b66b4fd24e30bb584198a1a31e423756892589
- SSDEEP
  
  1536:1d7zh6yaRfjdDZO+3KH+f7pYxuxgffbtorECnhc7cEsWM+cd36Sq1DCgRmd:1d7zobFjdVqeeuxgLtKE7QN36nZCgRq
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan