metasploit | d60034b87eaae97298435f653a27a2ff8a8800ab9cda72e76d44bb2a29729400 | Triage

Sharing

General

Target

JaffaCakes118_bb94ec9d8db5ca1b06f48b20f996bfba
Size

15KB
Sample

250417-3cmmlsvyfy
MD5

bb94ec9d8db5ca1b06f48b20f996bfba
SHA1

dba01fd895aba252a9415249053047f37369dcff
SHA256

d60034b87eaae97298435f653a27a2ff8a8800ab9cda72e76d44bb2a29729400
SHA512

07a1729261b9828d9810f383ecf396493d3eb9e4222ef269eb8e97588bc60f5a2ac603e9dd3a36426931ff0bf29022f4a8705bc367b4cab5733da249f450ea26
SSDEEP

192:M42aJ6bN1ZqMnq7F3Ymyiw+M8zlDX8YQoeyFozC4x:MU6bYLxYniw+M8zlDMY/JaWG

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

encoder/call4_dword_xor

Targets

- Target
  
  JaffaCakes118_bb94ec9d8db5ca1b06f48b20f996bfba
- Size
  
  15KB
- MD5
  
  bb94ec9d8db5ca1b06f48b20f996bfba
- SHA1
  
  dba01fd895aba252a9415249053047f37369dcff
- SHA256
  
  d60034b87eaae97298435f653a27a2ff8a8800ab9cda72e76d44bb2a29729400
- SHA512
  
  07a1729261b9828d9810f383ecf396493d3eb9e4222ef269eb8e97588bc60f5a2ac603e9dd3a36426931ff0bf29022f4a8705bc367b4cab5733da249f450ea26
- SSDEEP
  
  192:M42aJ6bN1ZqMnq7F3Ymyiw+M8zlDX8YQoeyFozC4x:MU6bYLxYniw+M8zlDMY/JaWG
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan