General

  • Target

    070a46eb2b13d5a1b58861d2c429ba7e_JaffaCakes118

  • Size

    88KB

  • Sample

    240620-sbf4bsxfmm

  • MD5

    070a46eb2b13d5a1b58861d2c429ba7e

  • SHA1

    01c9750cb51e5fc07645d885abd2e9df7b70411c

  • SHA256

    6933f93d2cadbf869d02ed39801d16aee888861562d659bac3dbfd98696e1c93

  • SHA512

    1dca5185ef54b55ed89480d672da6e6bbbe935013ba002dbe1af96a7554f0b38ba182c688e788e4d6d436f23127a046b535a9d627f26ea3814c060340ff3a31b

  • SSDEEP

    1536:fjgMqHSP1FloIBLIHqKqvZORIKskz/oo16rXS:LHSS9FlKqxO6rqIri

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.0.13:4444

Targets

    • Target

      070a46eb2b13d5a1b58861d2c429ba7e_JaffaCakes118

    • Size

      88KB

    • MD5

      070a46eb2b13d5a1b58861d2c429ba7e

    • SHA1

      01c9750cb51e5fc07645d885abd2e9df7b70411c

    • SHA256

      6933f93d2cadbf869d02ed39801d16aee888861562d659bac3dbfd98696e1c93

    • SHA512

      1dca5185ef54b55ed89480d672da6e6bbbe935013ba002dbe1af96a7554f0b38ba182c688e788e4d6d436f23127a046b535a9d627f26ea3814c060340ff3a31b

    • SSDEEP

      1536:fjgMqHSP1FloIBLIHqKqvZORIKskz/oo16rXS:LHSS9FlKqxO6rqIri

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks