General

  • Target

    07de0cbb7b80273ee8ef883fe753ea9f_JaffaCakes118

  • Size

    72KB

  • Sample

    240624-l5a1vazfpq

  • MD5

    07de0cbb7b80273ee8ef883fe753ea9f

  • SHA1

    6c7751f4074c9953980a7f402b4b45cd1d657a5f

  • SHA256

    c95cc942782f75afcdf6488a53adb84165e1794494000aa13e21e71cb372edef

  • SHA512

    470db0f4c8a70152715fe5e87eae42827f23f72d82d81c6a2a8d6a593760aaac76238d8a81502855fef57dcfb8fc5497074c5c3e1f6f97ce33fb435fda4cf6b9

  • SSDEEP

    1536:ISsLspA1ioDRzhPkCGw0zfrMb+KR0Nc8QsJq39:j9A73b0zTe0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

172.26.33.244:5353

Targets

    • Target

      07de0cbb7b80273ee8ef883fe753ea9f_JaffaCakes118

    • Size

      72KB

    • MD5

      07de0cbb7b80273ee8ef883fe753ea9f

    • SHA1

      6c7751f4074c9953980a7f402b4b45cd1d657a5f

    • SHA256

      c95cc942782f75afcdf6488a53adb84165e1794494000aa13e21e71cb372edef

    • SHA512

      470db0f4c8a70152715fe5e87eae42827f23f72d82d81c6a2a8d6a593760aaac76238d8a81502855fef57dcfb8fc5497074c5c3e1f6f97ce33fb435fda4cf6b9

    • SSDEEP

      1536:ISsLspA1ioDRzhPkCGw0zfrMb+KR0Nc8QsJq39:j9A73b0zTe0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks