General

  • Target

    05c12a2db7e2f37660e481e0bf0f957b_JaffaCakes118

  • Size

    72KB

  • MD5

    05c12a2db7e2f37660e481e0bf0f957b

  • SHA1

    7d733691ea0cbe083a9c13af595a32ac516463d4

  • SHA256

    e1eee24c316fea187d47f1fe9c6eea7dcc121f2f239bf12c35abe6faa90645ca

  • SHA512

    12676d224e8f36fa02297761afaf4f255d15864ad8b45b6484c866f6b1610cb30e3fd465c48563be1b8c3c7c80270125e83084c075da80b495eada9439c4212b

  • SSDEEP

    1536:IaPcrB9xFqP7m85o1G3dNohMhRjgAMb+KR0Nc8QsJq39:qB9xcn5okNiCgAe0Nc8QsC9

Score
10/10

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.30.153:443

Signatures

  • Metasploit family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 05c12a2db7e2f37660e481e0bf0f957b_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    481f47bbb2c9c21e108d65f52b04c448


    Headers

    Imports

    Sections