General

  • Target

    028cf9c9f89a9ef55c43bea8b942572c_JaffaCakes118

  • Size

    72KB

  • Sample

    240622-rhbazsvfqk

  • MD5

    028cf9c9f89a9ef55c43bea8b942572c

  • SHA1

    ea3e91d8851f4e38639857afbc09c50348eba231

  • SHA256

    d0a163a345d0014f636379f9172d4610053a2051221bf9236c690c4bb0121d64

  • SHA512

    09c724f6a3e62fbcdf64d929a6b0b459e1923807745ac4d394bebaa741bee30669bd87930c831b3f6f09ae1e2336c61c35dad9148942426d8b78d3c8a5cd0658

  • SSDEEP

    1536:IY533e1eJJ6RHWYsQwzM/XrFOduIoH+yMj9s9xjoMb+KR0Nc8QsJq39:b53u1O6RHWpbMRDISLn8e0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.0.2:4444

Targets

    • Target

      028cf9c9f89a9ef55c43bea8b942572c_JaffaCakes118

    • Size

      72KB

    • MD5

      028cf9c9f89a9ef55c43bea8b942572c

    • SHA1

      ea3e91d8851f4e38639857afbc09c50348eba231

    • SHA256

      d0a163a345d0014f636379f9172d4610053a2051221bf9236c690c4bb0121d64

    • SHA512

      09c724f6a3e62fbcdf64d929a6b0b459e1923807745ac4d394bebaa741bee30669bd87930c831b3f6f09ae1e2336c61c35dad9148942426d8b78d3c8a5cd0658

    • SSDEEP

      1536:IY533e1eJJ6RHWYsQwzM/XrFOduIoH+yMj9s9xjoMb+KR0Nc8QsJq39:b53u1O6RHWpbMRDISLn8e0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks