General

  • Target

    0802bcc032d592a5cb8d01b460b64f65_JaffaCakes118

  • Size

    72KB

  • Sample

    240620-vjjwasyalb

  • MD5

    0802bcc032d592a5cb8d01b460b64f65

  • SHA1

    96b8480a93d76d3d375965822e084821c4565995

  • SHA256

    8447810fbed96625c8fca4ef3c212088c9cf060e7e07718cb703a56182972d88

  • SHA512

    e3a47d1a18ba821302a6d9f6f7263004f98dcd7de4176cfeff65a3ce35e9fa2fe594201221b355927a70b1fc8ce9c633e51c17cacecf933aab66e3c5761e9007

  • SSDEEP

    1536:IgUjEGkR45IyQtbbU3s/4j8FrMb+KR0Nc8QsJq39:71GxZQtfU3s/soe0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.0.44:4444

Targets

    • Target

      0802bcc032d592a5cb8d01b460b64f65_JaffaCakes118

    • Size

      72KB

    • MD5

      0802bcc032d592a5cb8d01b460b64f65

    • SHA1

      96b8480a93d76d3d375965822e084821c4565995

    • SHA256

      8447810fbed96625c8fca4ef3c212088c9cf060e7e07718cb703a56182972d88

    • SHA512

      e3a47d1a18ba821302a6d9f6f7263004f98dcd7de4176cfeff65a3ce35e9fa2fe594201221b355927a70b1fc8ce9c633e51c17cacecf933aab66e3c5761e9007

    • SSDEEP

      1536:IgUjEGkR45IyQtbbU3s/4j8FrMb+KR0Nc8QsJq39:71GxZQtfU3s/soe0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks