General

  • Target

    077122277d0c018d1dbb67988ef2d2f0_JaffaCakes118

  • Size

    72KB

  • Sample

    240620-s87ybazcjp

  • MD5

    077122277d0c018d1dbb67988ef2d2f0

  • SHA1

    d0249872d733313b5a8ad261c13500ffdc33c7dc

  • SHA256

    56a9dc484bbaea18c04f1b08972646d581528e9d3cf73c3eccdb19d5d2e4480a

  • SHA512

    d6f08af0d1623e2adb2a131833631c7a638b022171f15afcaf6c3d20f4f269fb4c56ba86623d7e9508dce3b42f116b8ad4823d76d0f8e0367076d371de4024b9

  • SSDEEP

    1536:I/9sUZv495tV+OmHSwLCBi8zNYMb+KR0Nc8Qs:A99un+HH/ClBYe0Nc8Qs

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.1.67:4444

Targets

    • Target

      077122277d0c018d1dbb67988ef2d2f0_JaffaCakes118

    • Size

      72KB

    • MD5

      077122277d0c018d1dbb67988ef2d2f0

    • SHA1

      d0249872d733313b5a8ad261c13500ffdc33c7dc

    • SHA256

      56a9dc484bbaea18c04f1b08972646d581528e9d3cf73c3eccdb19d5d2e4480a

    • SHA512

      d6f08af0d1623e2adb2a131833631c7a638b022171f15afcaf6c3d20f4f269fb4c56ba86623d7e9508dce3b42f116b8ad4823d76d0f8e0367076d371de4024b9

    • SSDEEP

      1536:I/9sUZv495tV+OmHSwLCBi8zNYMb+KR0Nc8Qs:A99un+HH/ClBYe0Nc8Qs

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks