General

  • Target

    01076152c1cf8d8ee9f16c941ad14aad_JaffaCakes118

  • Size

    72KB

  • Sample

    240622-dpm2gaverg

  • MD5

    01076152c1cf8d8ee9f16c941ad14aad

  • SHA1

    8aea767fe49b668161deb452b6b443ceb9cb8e43

  • SHA256

    c4dae2c485050a3a62771082126c6c4f156f35e67996e4950b35ded2b415a16c

  • SHA512

    feda3e6cfa6261be9cf969f0faf01865c2b9374f805399a468325cde3b1e950c1ef742a77af3dbda4cad5c309493bdf1a99feb66520c41ccf7f5920a663c606a

  • SSDEEP

    1536:IOa6BsXTw0Wj6QVEfxwmDhmIcftgcMb+KR0Nc8QsJq39:unTMVwxRDbZce0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.1.13:5555

Targets

    • Target

      01076152c1cf8d8ee9f16c941ad14aad_JaffaCakes118

    • Size

      72KB

    • MD5

      01076152c1cf8d8ee9f16c941ad14aad

    • SHA1

      8aea767fe49b668161deb452b6b443ceb9cb8e43

    • SHA256

      c4dae2c485050a3a62771082126c6c4f156f35e67996e4950b35ded2b415a16c

    • SHA512

      feda3e6cfa6261be9cf969f0faf01865c2b9374f805399a468325cde3b1e950c1ef742a77af3dbda4cad5c309493bdf1a99feb66520c41ccf7f5920a663c606a

    • SSDEEP

      1536:IOa6BsXTw0Wj6QVEfxwmDhmIcftgcMb+KR0Nc8QsJq39:unTMVwxRDbZce0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks