General

  • Target

    04bd221a81fd5599be51f118594522dc_JaffaCakes118

  • Size

    72KB

  • Sample

    240623-3ypdbsygja

  • MD5

    04bd221a81fd5599be51f118594522dc

  • SHA1

    6dd151c1ed2d1ee398c714996226ef51b95a10cb

  • SHA256

    c3fa29d68120aa7ce5c4e5707bd6825eedd194be2aea84988de16b8fa30d885c

  • SHA512

    c8e43ba6289e7482e3a5b418736356dc140b9d04d82553931d9dff1caa5472f5a2af48d21e457c4f19d8973645bab60676d9d9aba3c4865b7633d69b53a19e8d

  • SSDEEP

    1536:IcU8q2QTX6mAEJsQiAKwiaDfI11q2Mb+KR0Nc8QsJq39:9y2QjeEJsQvKwcjq2e0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.1.40:4444

Targets

    • Target

      04bd221a81fd5599be51f118594522dc_JaffaCakes118

    • Size

      72KB

    • MD5

      04bd221a81fd5599be51f118594522dc

    • SHA1

      6dd151c1ed2d1ee398c714996226ef51b95a10cb

    • SHA256

      c3fa29d68120aa7ce5c4e5707bd6825eedd194be2aea84988de16b8fa30d885c

    • SHA512

      c8e43ba6289e7482e3a5b418736356dc140b9d04d82553931d9dff1caa5472f5a2af48d21e457c4f19d8973645bab60676d9d9aba3c4865b7633d69b53a19e8d

    • SSDEEP

      1536:IcU8q2QTX6mAEJsQiAKwiaDfI11q2Mb+KR0Nc8QsJq39:9y2QjeEJsQvKwcjq2e0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks