General

  • Target

    078b5481a213859b8c32dbfe6381c4a5_JaffaCakes118

  • Size

    72KB

  • Sample

    240624-krxf9axbqq

  • MD5

    078b5481a213859b8c32dbfe6381c4a5

  • SHA1

    02d14cb6808207b9b21eb9171afad65dabed62f1

  • SHA256

    daa31fcd93123b0dcaf6d893b0a30d3fe4c25206749a9b7df05a50ad0ce2dd78

  • SHA512

    9336dc7c4a50522d11b70b4de31f3b1f505865b3ab626ceed0031e0fed188927e3ed352fddf853c44238a55da538b5776081750a62943b5efe5651c841d881a1

  • SSDEEP

    1536:IK9kOrle8Rjv1P3xLPu4w1UV6QkPW7auGE2zMb+KR0Nc8QsJq39:PaOJhjd3xLPuLU6WeuF2ze0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.1.99:4444

Targets

    • Target

      078b5481a213859b8c32dbfe6381c4a5_JaffaCakes118

    • Size

      72KB

    • MD5

      078b5481a213859b8c32dbfe6381c4a5

    • SHA1

      02d14cb6808207b9b21eb9171afad65dabed62f1

    • SHA256

      daa31fcd93123b0dcaf6d893b0a30d3fe4c25206749a9b7df05a50ad0ce2dd78

    • SHA512

      9336dc7c4a50522d11b70b4de31f3b1f505865b3ab626ceed0031e0fed188927e3ed352fddf853c44238a55da538b5776081750a62943b5efe5651c841d881a1

    • SSDEEP

      1536:IK9kOrle8Rjv1P3xLPu4w1UV6QkPW7auGE2zMb+KR0Nc8QsJq39:PaOJhjd3xLPuLU6WeuF2ze0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks