General

  • Target

    020d0d490a5e4e781c1ed8eca4f07840_JaffaCakes118

  • Size

    88KB

  • Sample

    240622-pbbl3a1erp

  • MD5

    020d0d490a5e4e781c1ed8eca4f07840

  • SHA1

    d5b18c93c198615c523e2e160540f2abc240d0b5

  • SHA256

    ca4f397fa2fa72d839fdbbab3e0a379b02292a60ca33a6976987ca62884492b2

  • SHA512

    87c6cf071f2c0a718de4316a28507332aabe0ac6ea861ff46a0170a495917b7a61740f7a5239d6bc43b23abf92d265bd3503800cacf669bd0263df7206d3fec2

  • SSDEEP

    1536:St+Mq0Pwokp7Zql8VYdBB9M+dN76lfan6BoYF2:Styg2p7ZqlJMoN7kfJBo

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://192.168.1.21:4444/AIANS

Targets

    • Target

      020d0d490a5e4e781c1ed8eca4f07840_JaffaCakes118

    • Size

      88KB

    • MD5

      020d0d490a5e4e781c1ed8eca4f07840

    • SHA1

      d5b18c93c198615c523e2e160540f2abc240d0b5

    • SHA256

      ca4f397fa2fa72d839fdbbab3e0a379b02292a60ca33a6976987ca62884492b2

    • SHA512

      87c6cf071f2c0a718de4316a28507332aabe0ac6ea861ff46a0170a495917b7a61740f7a5239d6bc43b23abf92d265bd3503800cacf669bd0263df7206d3fec2

    • SSDEEP

      1536:St+Mq0Pwokp7Zql8VYdBB9M+dN76lfan6BoYF2:Styg2p7ZqlJMoN7kfJBo

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks