General

  • Target

    039394c274c28cced97f4473e323b702_JaffaCakes118

  • Size

    72KB

  • Sample

    240622-xy148s1blf

  • MD5

    039394c274c28cced97f4473e323b702

  • SHA1

    17b7c009d54c25d4de324ae356c8aaaf9df8e3ad

  • SHA256

    80a5f8ea61d41cfcd4531c79ba76d95c75d3e6eca3704e2381272fee5487cd37

  • SHA512

    e47baa6563fb779f0283f0400f782276c07ae6f16183aa3ae842d7d59b48ee3890d13e13dd25d30038ed7592da580d69fa8e140770b87ce5866beefa7631784e

  • SSDEEP

    1536:IaAkKtkN7Zyf4znjlIjFega6G9QXMb+KR0Nc8QsJq39:qkKeZWUjlS4gTje0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

200.84.38.148:554

Targets

    • Target

      039394c274c28cced97f4473e323b702_JaffaCakes118

    • Size

      72KB

    • MD5

      039394c274c28cced97f4473e323b702

    • SHA1

      17b7c009d54c25d4de324ae356c8aaaf9df8e3ad

    • SHA256

      80a5f8ea61d41cfcd4531c79ba76d95c75d3e6eca3704e2381272fee5487cd37

    • SHA512

      e47baa6563fb779f0283f0400f782276c07ae6f16183aa3ae842d7d59b48ee3890d13e13dd25d30038ed7592da580d69fa8e140770b87ce5866beefa7631784e

    • SSDEEP

      1536:IaAkKtkN7Zyf4znjlIjFega6G9QXMb+KR0Nc8QsJq39:qkKeZWUjlS4gTje0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks