metasploit | aca87fc72e058bcf251f3d44a1347acc6ee0b4903207950f1ca0f63a2a3210ce | Triage

Sharing

General

Target

JaffaCakes118_641e07df1671fa7e1f6a24b308a30cdd
Size

17KB
Sample

250102-lflfaayldl
MD5

641e07df1671fa7e1f6a24b308a30cdd
SHA1

a30f15a44d7c9a58251aed950c8a7db4a138273e
SHA256

aca87fc72e058bcf251f3d44a1347acc6ee0b4903207950f1ca0f63a2a3210ce
SHA512

6fe3dab39e750f404b78e085d3741a0b8c7cec2a09ab515120f8f32aa44398c3278ece31f659e7f4f11ada6ee0d50e7f690c7e5e634aa82c239a61d31f73510f
SSDEEP

192:aYZLA6pmbqrnXCFkSW9WKvYRK3oeyF9+CC4L:5pm4RSW4KwRK4JP+Z8

Score

10^/10

metasploit discovery

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

23.22.19.250:80

Targets

- Target
  
  JaffaCakes118_641e07df1671fa7e1f6a24b308a30cdd
- Size
  
  17KB
- MD5
  
  641e07df1671fa7e1f6a24b308a30cdd
- SHA1
  
  a30f15a44d7c9a58251aed950c8a7db4a138273e
- SHA256
  
  aca87fc72e058bcf251f3d44a1347acc6ee0b4903207950f1ca0f63a2a3210ce
- SHA512
  
  6fe3dab39e750f404b78e085d3741a0b8c7cec2a09ab515120f8f32aa44398c3278ece31f659e7f4f11ada6ee0d50e7f690c7e5e634aa82c239a61d31f73510f
- SSDEEP
  
  192:aYZLA6pmbqrnXCFkSW9WKvYRK3oeyF9+CC4L:5pm4RSW4KwRK4JP+Z8
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2