General

  • Target

    29b0c78c2deb68a675d4ee2bcfcada88_JaffaCakes118

  • Size

    72KB

  • Sample

    240707-dl9fasscpm

  • MD5

    29b0c78c2deb68a675d4ee2bcfcada88

  • SHA1

    6a9b22b3e9565f0969352440ba86586dd9276719

  • SHA256

    0e24ec2798e610291d80e0b5b24accccc7051ddd2cf1c06908c9cad2f61e75fe

  • SHA512

    21e7edc662738d83720db87d38ecd1fd6805f15e195dac5d14b6075f971ceb51ec3d3e8a2f3845d73257d742aa75b48a0c0677f640cc07082325fd8d3ba84a0d

  • SSDEEP

    1536:I8UoitoMdcCZzSDOlDwC7deWPnbvNXTMb+KR0Nc8QsJq39:zitoMdcC1SGwCkmnbvNXTe0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

83.145.170.32:4444

Targets

    • Target

      29b0c78c2deb68a675d4ee2bcfcada88_JaffaCakes118

    • Size

      72KB

    • MD5

      29b0c78c2deb68a675d4ee2bcfcada88

    • SHA1

      6a9b22b3e9565f0969352440ba86586dd9276719

    • SHA256

      0e24ec2798e610291d80e0b5b24accccc7051ddd2cf1c06908c9cad2f61e75fe

    • SHA512

      21e7edc662738d83720db87d38ecd1fd6805f15e195dac5d14b6075f971ceb51ec3d3e8a2f3845d73257d742aa75b48a0c0677f640cc07082325fd8d3ba84a0d

    • SSDEEP

      1536:I8UoitoMdcCZzSDOlDwC7deWPnbvNXTMb+KR0Nc8QsJq39:zitoMdcC1SGwCkmnbvNXTe0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks