General

  • Target

    259b9826b272d22667a40bd599b15935_JaffaCakes118

  • Size

    33KB

  • Sample

    240704-vkt3nazcrr

  • MD5

    259b9826b272d22667a40bd599b15935

  • SHA1

    c446b4d9e0a3ba9f992a1c99371a25d5a3df66e9

  • SHA256

    b4fe352216c0628b695cc1360d5b41af5433f1cc5bf0882b725a4f07595d5996

  • SHA512

    6978df292d8c7f719454b91afc7de0338cd70604a5caded4680c9e5dcaaa3979db7bc3c67ecaa452ec77698a9be72d01edd8366e8222e1dec9180dd69809a134

  • SSDEEP

    384:6BvVPo47fdQYbWIQVvkqwLdhQKC7496j2X0OvEDHcb0nucKir21mP+fYNYHKbi7h:q3qMdhI47NED8AntfqmfNk

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://192.168.1.121:8443/d0zN

Targets

    • Target

      259b9826b272d22667a40bd599b15935_JaffaCakes118

    • Size

      33KB

    • MD5

      259b9826b272d22667a40bd599b15935

    • SHA1

      c446b4d9e0a3ba9f992a1c99371a25d5a3df66e9

    • SHA256

      b4fe352216c0628b695cc1360d5b41af5433f1cc5bf0882b725a4f07595d5996

    • SHA512

      6978df292d8c7f719454b91afc7de0338cd70604a5caded4680c9e5dcaaa3979db7bc3c67ecaa452ec77698a9be72d01edd8366e8222e1dec9180dd69809a134

    • SSDEEP

      384:6BvVPo47fdQYbWIQVvkqwLdhQKC7496j2X0OvEDHcb0nucKir21mP+fYNYHKbi7h:q3qMdhI47NED8AntfqmfNk

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks