General

  • Target

    b789a3647302dea7b4133e872a9302d9_JaffaCakes118

  • Size

    76KB

  • Sample

    240404-nyc8qseb7t

  • MD5

    b789a3647302dea7b4133e872a9302d9

  • SHA1

    7892caf47340433e10b379a8846f62c73c29e036

  • SHA256

    f297ca04a64364527b25f5ba77d21ab368985c1cf7f294b5f7350b2914fe730e

  • SHA512

    e92a278fcb9a7d412b731add1cc616df6d0fdfe66c3ab1eadf9f7d403ab91395a12b822f6d277fb9c8033d9da2882faffee18ae3fb257b5669851612e02f6dd6

  • SSDEEP

    1536:I1/sarnPq4Dwg2ioC6DPCJMb+KR0Nc8QsJq31YaJJo:2/5TPjoMJe0Nc8QsC1ZJJ

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.64.134:1234

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.64.134:1234

Targets

    • Target

      b789a3647302dea7b4133e872a9302d9_JaffaCakes118

    • Size

      76KB

    • MD5

      b789a3647302dea7b4133e872a9302d9

    • SHA1

      7892caf47340433e10b379a8846f62c73c29e036

    • SHA256

      f297ca04a64364527b25f5ba77d21ab368985c1cf7f294b5f7350b2914fe730e

    • SHA512

      e92a278fcb9a7d412b731add1cc616df6d0fdfe66c3ab1eadf9f7d403ab91395a12b822f6d277fb9c8033d9da2882faffee18ae3fb257b5669851612e02f6dd6

    • SSDEEP

      1536:I1/sarnPq4Dwg2ioC6DPCJMb+KR0Nc8QsJq31YaJJo:2/5TPjoMJe0Nc8QsC1ZJJ

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks