General

  • Target

    259da684aae526f880053155c84ce3db_JaffaCakes118

  • Size

    72KB

  • Sample

    240704-vmgv4szdqn

  • MD5

    259da684aae526f880053155c84ce3db

  • SHA1

    e494dd8dc868bebfab95166c53a8f0d46be63dd5

  • SHA256

    c7bb4c3f138b43e552a7144f1fe8e45defea618b4be01dcaa51228debe180983

  • SHA512

    6ca7769952d4a92825dffd11ab22a6bda3695dee3574d6eacdd14e6c15831911a85aa3a39179b6c9c880bc006dd338998ab621715fa6c69eb0b0dba7ee0780c4

  • SSDEEP

    1536:IJePAasL/MHD2ZdjDi9qoqMb+KR0Nc8QsJq39:6zasSD4djDi9qoqe0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

92.253.102.95:4444

Targets

    • Target

      259da684aae526f880053155c84ce3db_JaffaCakes118

    • Size

      72KB

    • MD5

      259da684aae526f880053155c84ce3db

    • SHA1

      e494dd8dc868bebfab95166c53a8f0d46be63dd5

    • SHA256

      c7bb4c3f138b43e552a7144f1fe8e45defea618b4be01dcaa51228debe180983

    • SHA512

      6ca7769952d4a92825dffd11ab22a6bda3695dee3574d6eacdd14e6c15831911a85aa3a39179b6c9c880bc006dd338998ab621715fa6c69eb0b0dba7ee0780c4

    • SSDEEP

      1536:IJePAasL/MHD2ZdjDi9qoqMb+KR0Nc8QsJq39:6zasSD4djDi9qoqe0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks