General
-
Target
fd8918c67d99f1c54e592b5fe79cd104_JaffaCakes118
-
Size
72KB
-
Sample
240420-ytn5jsgf39
-
MD5
fd8918c67d99f1c54e592b5fe79cd104
-
SHA1
9a10e9981c1e4c75c5a9b5253bd86d9057cc4fcf
-
SHA256
c6d32aa42367461bbf30392751a11a894b24afdf53727efcdd21233c798cf1e7
-
SHA512
9f6bc37aca37be6404ba348193608e8f3282a3ca2d879c40d2b467828c7300f0c63156da7e0cc21acff0cfd646ad09ed0ca4b3c0546f35925768ad7c340f9b81
-
SSDEEP
1536:IN/ukRRX3Y/S2SF8TuySzzWMenMb+KR0Nc8QsJq39:y2iRXzWTd1ne0Nc8QsC9
Behavioral task
behavioral1
Sample
fd8918c67d99f1c54e592b5fe79cd104_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
fd8918c67d99f1c54e592b5fe79cd104_JaffaCakes118.exe
Resource
win10v2004-20240412-en
Malware Config
Extracted
metasploit
encoder/shikata_ga_nai
Extracted
metasploit
windows/exec
Targets
-
-
Target
fd8918c67d99f1c54e592b5fe79cd104_JaffaCakes118
-
Size
72KB
-
MD5
fd8918c67d99f1c54e592b5fe79cd104
-
SHA1
9a10e9981c1e4c75c5a9b5253bd86d9057cc4fcf
-
SHA256
c6d32aa42367461bbf30392751a11a894b24afdf53727efcdd21233c798cf1e7
-
SHA512
9f6bc37aca37be6404ba348193608e8f3282a3ca2d879c40d2b467828c7300f0c63156da7e0cc21acff0cfd646ad09ed0ca4b3c0546f35925768ad7c340f9b81
-
SSDEEP
1536:IN/ukRRX3Y/S2SF8TuySzzWMenMb+KR0Nc8QsJq39:y2iRXzWTd1ne0Nc8QsC9
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Grants admin privileges
Uses net.exe to modify the user's privileges.
-