metasploit | 3a84f6a248cee05b28e2bb5faf9a0c61fc8116ad194583e85b870df003f31886 | Triage

Sharing

General

Target

JaffaCakes118_966af3b1a2563db514d274c1b70e0361
Size

37KB
Sample

250329-ynbx2azkw9
MD5

966af3b1a2563db514d274c1b70e0361
SHA1

b988e9c7fa17a1dccae498b89786d1f1735bd411
SHA256

3a84f6a248cee05b28e2bb5faf9a0c61fc8116ad194583e85b870df003f31886
SHA512

03958369b13a6ad78e26ffee82e871f41a0bc5d513966d0d251260c9e023051bf2a9ff03659e404a2e85399b84da4d581e126b54823d64443b5d8dd5073ebb3a
SSDEEP

768:rCA1S8tH20mu5qIjRKO7AeVqLXNVNtIvQ6lRZ95x:WHO5mjck2wdVN6Xh5x

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.10.32:31337

Targets

- Target
  
  JaffaCakes118_966af3b1a2563db514d274c1b70e0361
- Size
  
  37KB
- MD5
  
  966af3b1a2563db514d274c1b70e0361
- SHA1
  
  b988e9c7fa17a1dccae498b89786d1f1735bd411
- SHA256
  
  3a84f6a248cee05b28e2bb5faf9a0c61fc8116ad194583e85b870df003f31886
- SHA512
  
  03958369b13a6ad78e26ffee82e871f41a0bc5d513966d0d251260c9e023051bf2a9ff03659e404a2e85399b84da4d581e126b54823d64443b5d8dd5073ebb3a
- SSDEEP
  
  768:rCA1S8tH20mu5qIjRKO7AeVqLXNVNtIvQ6lRZ95x:WHO5mjck2wdVN6Xh5x
Score

10^/10

metasploit backdoor trojan discovery
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoordiscoverytrojan