General

  • Target

    2a09a7951467735bf215123c61ce0663_JaffaCakes118

  • Size

    112KB

  • Sample

    240707-2n2egasckf

  • MD5

    2a09a7951467735bf215123c61ce0663

  • SHA1

    92a622cc95103bf50feb2cdd541a98d8d7a5d0a1

  • SHA256

    41d2a3ec483745c9f996db2a63bb776f91c874ea0441217583d0d0b009d7857d

  • SHA512

    661a97495996009f16d736ff69ed4cd5c55836b5228a4de6404e11d0800ac086d37b093a91e06d067329a442842b766d7a28a85fa8edccfdc767bea326dfbea0

  • SSDEEP

    1536:YBqdp0alhaj2pREtg+tOqvQN4G8ymM+nYLiCnA1XgrfoPvWeBsCXK0RyTR:Ygd62cj2REtgxyT5YLiCNoX7BsCRyV

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.199.129:4444

Targets

    • Target

      2a09a7951467735bf215123c61ce0663_JaffaCakes118

    • Size

      112KB

    • MD5

      2a09a7951467735bf215123c61ce0663

    • SHA1

      92a622cc95103bf50feb2cdd541a98d8d7a5d0a1

    • SHA256

      41d2a3ec483745c9f996db2a63bb776f91c874ea0441217583d0d0b009d7857d

    • SHA512

      661a97495996009f16d736ff69ed4cd5c55836b5228a4de6404e11d0800ac086d37b093a91e06d067329a442842b766d7a28a85fa8edccfdc767bea326dfbea0

    • SSDEEP

      1536:YBqdp0alhaj2pREtg+tOqvQN4G8ymM+nYLiCnA1XgrfoPvWeBsCXK0RyTR:Ygd62cj2REtgxyT5YLiCNoX7BsCRyV

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks