General

  • Target

    046000a804cf283daf0c9cdd3fbecad0_JaffaCakes118

  • Size

    348KB

  • MD5

    046000a804cf283daf0c9cdd3fbecad0

  • SHA1

    54161eb1cdbbca736447d03d0cdae7e153039e0e

  • SHA256

    5341dfd55d781495b5a04eab350ccc5af1f8c4beb44f9386f33cfce057c6eca2

  • SHA512

    b6ec8540df54f943199b5aba7c165e4b475e226f6b9403ddb7b0f7ec144f45d84194c9ef2b45547b8c2d7b83a9848354ff2be0f1f51aaedb7d3f31dd40bc3a93

  • SSDEEP

    6144:KZP6ECMIMSpfhchiq40BR3WxzpmGvv4tOT8H/:KZP61NMaY540BR3WxzpnvwtOTA

Score
10/10

Malware Config

Extracted

Family

metasploit

Version

encoder/call4_dword_xor

Signatures

  • Metasploit family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 046000a804cf283daf0c9cdd3fbecad0_JaffaCakes118
    .exe windows:5 windows x86 arch:x86

    19625a3571bca1e595bd25a5ed35dcbf


    Headers

    Imports

    Sections