Analysis
-
max time kernel
149s -
max time network
154s -
platform
windows10-2004_x64 -
resource
win10v2004-20240704-en -
resource tags
arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system -
submitted
06-07-2024 13:55
Behavioral task
behavioral1
Sample
2864608c46b33df23510d4993e017ad2_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
2864608c46b33df23510d4993e017ad2_JaffaCakes118.exe
Resource
win10v2004-20240704-en
General
-
Target
2864608c46b33df23510d4993e017ad2_JaffaCakes118.exe
-
Size
72KB
-
MD5
2864608c46b33df23510d4993e017ad2
-
SHA1
76099be071fe8cd30bc03a6c7c479428361f0471
-
SHA256
33fcc7efc30baf5c975ed62a071a284258472d23b11fef4220b868ee128f2775
-
SHA512
130f39482499a9b29300020d47e20b8f2f7fd9497fd551d677e1223ecc615d6eec9856df26de2cb02da41fdd52cb08e3344750589fb879589b41d82ff3d2147d
-
SSDEEP
1536:ICbGcFT2VopkKeBI8q5RTYJh4Mb+KR0Nc8Qs:+c12rKN8OKGe0Nc8Qs
Malware Config
Extracted
metasploit
windows/shell_reverse_tcp
192.168.5.161:4444
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.