Overview

overview

10

Static

static

7

190b06c3d0...18.exe

windows7-x64

10

190b06c3d0...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    190b06c3d054856556d8159963fb3437_JaffaCakes118

  • Size

    50KB

  • Sample

    240628-gr3fqaxdjj

  • MD5

    190b06c3d054856556d8159963fb3437

  • SHA1

    133a6a35b406e887f868785b677ffecac0841104

  • SHA256

    aab6bd926fce7b744dc6931f940795f735cab09c5aa76c58df6ba8a38077990b

  • SHA512

    7c2c045ca6920b8f13c3937ba6f4749272339ccad488b83e0d6e97f76d0205d272b66067954bc97450a3a9cc5794a83f80730ca2f77d0adf0e69effab2bef9b8

  • SSDEEP

    1536:I0KVH2HaLYVCEp32j8i6gAoT/oMEpWu9cq3:h6UVCNpe6ov

Score
10/10
metasploitaspackv2backdoortrojan

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.38.114:4444

Targets

    • Target

      190b06c3d054856556d8159963fb3437_JaffaCakes118

    • Size

      50KB

    • MD5

      190b06c3d054856556d8159963fb3437

    • SHA1

      133a6a35b406e887f868785b677ffecac0841104

    • SHA256

      aab6bd926fce7b744dc6931f940795f735cab09c5aa76c58df6ba8a38077990b

    • SHA512

      7c2c045ca6920b8f13c3937ba6f4749272339ccad488b83e0d6e97f76d0205d272b66067954bc97450a3a9cc5794a83f80730ca2f77d0adf0e69effab2bef9b8

    • SSDEEP

      1536:I0KVH2HaLYVCEp32j8i6gAoT/oMEpWu9cq3:h6UVCNpe6ov

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks