General

  • Target

    005e14118bd848fcc8014624a7ab6d34_JaffaCakes118

  • Size

    72KB

  • Sample

    240623-zn3lesvdpp

  • MD5

    005e14118bd848fcc8014624a7ab6d34

  • SHA1

    34fa7f7884cdb1a3f688089cf214207acaa820de

  • SHA256

    99f09e6b99257cf70f4309b271f616b43f1a55b41519ea9a2c7e4d784f832bee

  • SHA512

    ea7e22b56db0ff31b029fb4756e6e2dc0161f6aeb5db2b97869519129a72b711c5642a15c9f485336fb7f0c2261a2694afc6dd8ed418be121324cb7f45afb28d

  • SSDEEP

    1536:I2c2ojLt31ZRYT8gttB58EjAU6Vwed3JLqIbMb+KR0Nc8QsJq39:62ojJiT8AB51gJ3JL/e0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.117.130:49255

Targets

    • Target

      005e14118bd848fcc8014624a7ab6d34_JaffaCakes118

    • Size

      72KB

    • MD5

      005e14118bd848fcc8014624a7ab6d34

    • SHA1

      34fa7f7884cdb1a3f688089cf214207acaa820de

    • SHA256

      99f09e6b99257cf70f4309b271f616b43f1a55b41519ea9a2c7e4d784f832bee

    • SHA512

      ea7e22b56db0ff31b029fb4756e6e2dc0161f6aeb5db2b97869519129a72b711c5642a15c9f485336fb7f0c2261a2694afc6dd8ed418be121324cb7f45afb28d

    • SSDEEP

      1536:I2c2ojLt31ZRYT8gttB58EjAU6Vwed3JLqIbMb+KR0Nc8QsJq39:62ojJiT8AB51gJ3JL/e0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks