General

  • Target

    0790dc09a00682c0c17e20005153fcb6_JaffaCakes118

  • Size

    7KB

  • Sample

    240624-kvvrtstgjg

  • MD5

    0790dc09a00682c0c17e20005153fcb6

  • SHA1

    dc0df1d45d01361b33fe19050617771139a7efe2

  • SHA256

    587f80f9b37881dbd61d7dbea38574972c46f5ecaa45fe0787bd84a3e8db8443

  • SHA512

    8cf2b37340b26857749b05ea9549656c1b8edb56cfacb4701b28a18e564994b713e3c6fb14bc48a8d4a811d4f6aa35b3f1e61f4af594dce96b98c2cff2e13868

  • SSDEEP

    96:SFPNvnCQiGkj3PwNL7kqFkHJB+ByS9HxsqOSapS:wCQd6PwNFFkHTYySoqfap

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.0.3:9090

Targets

    • Target

      0790dc09a00682c0c17e20005153fcb6_JaffaCakes118

    • Size

      7KB

    • MD5

      0790dc09a00682c0c17e20005153fcb6

    • SHA1

      dc0df1d45d01361b33fe19050617771139a7efe2

    • SHA256

      587f80f9b37881dbd61d7dbea38574972c46f5ecaa45fe0787bd84a3e8db8443

    • SHA512

      8cf2b37340b26857749b05ea9549656c1b8edb56cfacb4701b28a18e564994b713e3c6fb14bc48a8d4a811d4f6aa35b3f1e61f4af594dce96b98c2cff2e13868

    • SSDEEP

      96:SFPNvnCQiGkj3PwNL7kqFkHJB+ByS9HxsqOSapS:wCQd6PwNFFkHTYySoqfap

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks