General

  • Target

    01b66616eecd5a1f0448912c81ee1fa4_JaffaCakes118

  • Size

    217KB

  • Sample

    240622-mremjsycnq

  • MD5

    01b66616eecd5a1f0448912c81ee1fa4

  • SHA1

    47c4c2e99af747a7aa7fc6a7b92768db3c68eb98

  • SHA256

    9cf442d94570d246e9250318146cac0dec0a470bf8f6c7d9c48488736e9fb860

  • SHA512

    496e5f484d6795edd12cb9a70e3e542bd5b05be7c3844a5120569ae31332cee75bf6cc465bf03020a27330cbb7c83cd94822916ca2fd1f1178cd40077cb8af7d

  • SSDEEP

    6144:AoGY5nW9YhhuOqzuiaAfg/+qHQTtwXCYyF:Aoz5nW9Y3K/aGqwp+yF

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

10.1.10.88:443

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Targets

    • Target

      01b66616eecd5a1f0448912c81ee1fa4_JaffaCakes118

    • Size

      217KB

    • MD5

      01b66616eecd5a1f0448912c81ee1fa4

    • SHA1

      47c4c2e99af747a7aa7fc6a7b92768db3c68eb98

    • SHA256

      9cf442d94570d246e9250318146cac0dec0a470bf8f6c7d9c48488736e9fb860

    • SHA512

      496e5f484d6795edd12cb9a70e3e542bd5b05be7c3844a5120569ae31332cee75bf6cc465bf03020a27330cbb7c83cd94822916ca2fd1f1178cd40077cb8af7d

    • SSDEEP

      6144:AoGY5nW9YhhuOqzuiaAfg/+qHQTtwXCYyF:Aoz5nW9Y3K/aGqwp+yF

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks