General

  • Target

    01a1df2821088c9bb3d5c6d6cbf0d34f_JaffaCakes118

  • Size

    654KB

  • Sample

    240622-mejqqsxgpr

  • MD5

    01a1df2821088c9bb3d5c6d6cbf0d34f

  • SHA1

    1ec774e88c601af1a7266476288467243a49ae89

  • SHA256

    1540a73ba8addae9f6f9b6b40a8ba214ca3033ce55f4f957bc09c4e98d21f771

  • SHA512

    8812d0b1ef63c40411503964d66ff7262083b7221568e5854504f5a0896142aff211a9c136f6c2d780ca4cf2a5c1faa61d467b4d5fd12c82e3db247c3930eb1a

  • SSDEEP

    12288:qBKmAmveRyg/FkdbzT4rfUnUyhOX3S9QX3H59:sKmXeF/Fo4ryUyhOnS903H59

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://msfm.serveftp.net:4444/AcDWt

Targets

    • Target

      01a1df2821088c9bb3d5c6d6cbf0d34f_JaffaCakes118

    • Size

      654KB

    • MD5

      01a1df2821088c9bb3d5c6d6cbf0d34f

    • SHA1

      1ec774e88c601af1a7266476288467243a49ae89

    • SHA256

      1540a73ba8addae9f6f9b6b40a8ba214ca3033ce55f4f957bc09c4e98d21f771

    • SHA512

      8812d0b1ef63c40411503964d66ff7262083b7221568e5854504f5a0896142aff211a9c136f6c2d780ca4cf2a5c1faa61d467b4d5fd12c82e3db247c3930eb1a

    • SSDEEP

      12288:qBKmAmveRyg/FkdbzT4rfUnUyhOX3S9QX3H59:sKmXeF/Fo4ryUyhOnS903H59

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks