General

  • Target

    007b5f4d519ede21d41a067986939bf0_JaffaCakes118

  • Size

    72KB

  • Sample

    240623-zskleavfkl

  • MD5

    007b5f4d519ede21d41a067986939bf0

  • SHA1

    f2ab86b161a71f45eec4efcdf527682a045077e6

  • SHA256

    933828df0d243a82b2725b35931f5d378edffe0d74627860d267697723353056

  • SHA512

    cb64314f3863a89b5d7475dfb34f7f5089081fba93214a7d86c66b52137f4288658a5b55fc63f20fb9802a493e32da367fb46bcd57da64c8027f0f45ecbff61b

  • SSDEEP

    1536:IFKjJQ7EAdUd2sOW8Udhg5GCrq2ZCBgBMb+KR0Nc8QsJq39:CKjyfdUdrOW8UdK5GYq2kBae0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.2.106:23452

Targets

    • Target

      007b5f4d519ede21d41a067986939bf0_JaffaCakes118

    • Size

      72KB

    • MD5

      007b5f4d519ede21d41a067986939bf0

    • SHA1

      f2ab86b161a71f45eec4efcdf527682a045077e6

    • SHA256

      933828df0d243a82b2725b35931f5d378edffe0d74627860d267697723353056

    • SHA512

      cb64314f3863a89b5d7475dfb34f7f5089081fba93214a7d86c66b52137f4288658a5b55fc63f20fb9802a493e32da367fb46bcd57da64c8027f0f45ecbff61b

    • SSDEEP

      1536:IFKjJQ7EAdUd2sOW8Udhg5GCrq2ZCBgBMb+KR0Nc8QsJq39:CKjyfdUdrOW8UdK5GYq2kBae0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks