General
-
Target
f420bad96029b024d42e23c5b9300e44_JaffaCakes118
-
Size
477KB
-
Sample
240416-xqvx9abe5v
-
MD5
f420bad96029b024d42e23c5b9300e44
-
SHA1
79ef3ab63be198ed25851febee5c3bc603dc1d7a
-
SHA256
17b0f65a3acf878d72123a1648ce0490307ff176abf2117cb23b9ca30417a02e
-
SHA512
f962d6aeb2bb8e0a1a00a86dd709152542c9dd95750b062da6a86eec7b743e7e8610714663753530497219b21e0f37b8a4a1de204a638a0778cbd1d1e244d370
-
SSDEEP
12288:HIlKyhSac+JN0So1IImovQdkd2ABbl1HhjGR:olFhSnvSko47HJ6
Malware Config
Extracted
metasploit
encoder/call4_dword_xor
Targets
-
-
Target
f420bad96029b024d42e23c5b9300e44_JaffaCakes118
-
Size
477KB
-
MD5
f420bad96029b024d42e23c5b9300e44
-
SHA1
79ef3ab63be198ed25851febee5c3bc603dc1d7a
-
SHA256
17b0f65a3acf878d72123a1648ce0490307ff176abf2117cb23b9ca30417a02e
-
SHA512
f962d6aeb2bb8e0a1a00a86dd709152542c9dd95750b062da6a86eec7b743e7e8610714663753530497219b21e0f37b8a4a1de204a638a0778cbd1d1e244d370
-
SSDEEP
12288:HIlKyhSac+JN0So1IImovQdkd2ABbl1HhjGR:olFhSnvSko47HJ6
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-