metasploit | c20a98bf480b2fa31015f642e9c43d27554029add11bd1a9a3e3439f128ba3e5 | Triage

Submit
Reports

Overview

overview

Static

static

1b2ed88990...18.exe

windows7-x64

1b2ed88990...18.exe

windows10-2004-x64

Sharing

General

Target

1b2ed889908f29793690d904db080e70_JaffaCakes118
Size

72KB
Sample

240701-nzjrxazdne
MD5

1b2ed889908f29793690d904db080e70
SHA1

2693f12b4186354c8c7f0d03cb0cbf3d94bc7b4b
SHA256

c20a98bf480b2fa31015f642e9c43d27554029add11bd1a9a3e3439f128ba3e5
SHA512

7ba9d7ddbc3d3425df7230aa84425e55adf0963da18ae5e448cb3a03b3d9c4fa733edd27e6e0e541d3fe4a1297a62d1544db61a55f1568aa1c902e49acfa9e4c
SSDEEP

1536:IIsGyMNxrSeFd36IwUaqjRv8dKMb+KR0Nc8QsJq39:lRrSeFB6ItjRv8dKe0Nc8QsC9

Score

10^/10

metasploit backdoor trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

1b2ed889908f29793690d904db080e70_JaffaCakes118.exe

Resource

win7-20240221-en

metasploit backdoor trojan

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

1b2ed889908f29793690d904db080e70_JaffaCakes118.exe

Resource

win10v2004-20240611-en

metasploit backdoor trojan

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Extracted

Family

metasploit

Version

encoder/call4_dword_xor

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://192.168.1.23:8443/Aa3Kt

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Targets

- Target
  
  1b2ed889908f29793690d904db080e70_JaffaCakes118
- Size
  
  72KB
- MD5
  
  1b2ed889908f29793690d904db080e70
- SHA1
  
  2693f12b4186354c8c7f0d03cb0cbf3d94bc7b4b
- SHA256
  
  c20a98bf480b2fa31015f642e9c43d27554029add11bd1a9a3e3439f128ba3e5
- SHA512
  
  7ba9d7ddbc3d3425df7230aa84425e55adf0963da18ae5e448cb3a03b3d9c4fa733edd27e6e0e541d3fe4a1297a62d1544db61a55f1568aa1c902e49acfa9e4c
- SSDEEP
  
  1536:IIsGyMNxrSeFd36IwUaqjRv8dKMb+KR0Nc8QsJq39:lRrSeFB6ItjRv8dKe0Nc8QsC9
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan

© 2018-2024

Terms | Privacy