General

  • Target

    25bc444ef4d5b80fe179c8117a1bdd75_JaffaCakes118

  • Size

    72KB

  • Sample

    240704-wrk9rs1hjp

  • MD5

    25bc444ef4d5b80fe179c8117a1bdd75

  • SHA1

    9d828998cce968a78ea245e80183aa96d047bfd4

  • SHA256

    c6d2d952da8cef04521eec86ca1f6e29f0ab3ef148a8091dd0cc1744b40fd4b6

  • SHA512

    3728e82de8ecf25c10e4effd0e83bf7495caed396f7a0c30272bd677136d94692a82af180ba29910b8fc9e48bf43488465e26b2af66526d67cbffdbc47834ca8

  • SSDEEP

    1536:I2icUqtH9gCi2rH8FagZdjYgffjMb+KR0Nc8QsJq39:n0qkZMcFpZ11fbe0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

41.98.90.237:4444

Targets

    • Target

      25bc444ef4d5b80fe179c8117a1bdd75_JaffaCakes118

    • Size

      72KB

    • MD5

      25bc444ef4d5b80fe179c8117a1bdd75

    • SHA1

      9d828998cce968a78ea245e80183aa96d047bfd4

    • SHA256

      c6d2d952da8cef04521eec86ca1f6e29f0ab3ef148a8091dd0cc1744b40fd4b6

    • SHA512

      3728e82de8ecf25c10e4effd0e83bf7495caed396f7a0c30272bd677136d94692a82af180ba29910b8fc9e48bf43488465e26b2af66526d67cbffdbc47834ca8

    • SSDEEP

      1536:I2icUqtH9gCi2rH8FagZdjYgffjMb+KR0Nc8QsJq39:n0qkZMcFpZ11fbe0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks