General

  • Target

    29b0fed4c79b89a435d8e01c412f36fa_JaffaCakes118

  • Size

    72KB

  • Sample

    240707-dnh15avbmc

  • MD5

    29b0fed4c79b89a435d8e01c412f36fa

  • SHA1

    0ca34b448cb6384caaf857f8203ca75aca62694e

  • SHA256

    05c4681bac37e4936f2c05e9b0b4c83b5bb746a76b40a11e78fb098a8e329e49

  • SHA512

    35bf7d960b9a1ca0902c0e8ff737367b15db665af864a324a1eba7bb29a57064cc597e262dda2317fd3fd371e55112b3dba580656fb2574320f57dd139424c96

  • SSDEEP

    1536:IT2Gp7EN91oP+xIBNGXlKnh9YBB0jsMb+KR0Nc8QsJq39:m3cTC+xYSUnT2e0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.0.74:4444

Targets

    • Target

      29b0fed4c79b89a435d8e01c412f36fa_JaffaCakes118

    • Size

      72KB

    • MD5

      29b0fed4c79b89a435d8e01c412f36fa

    • SHA1

      0ca34b448cb6384caaf857f8203ca75aca62694e

    • SHA256

      05c4681bac37e4936f2c05e9b0b4c83b5bb746a76b40a11e78fb098a8e329e49

    • SHA512

      35bf7d960b9a1ca0902c0e8ff737367b15db665af864a324a1eba7bb29a57064cc597e262dda2317fd3fd371e55112b3dba580656fb2574320f57dd139424c96

    • SSDEEP

      1536:IT2Gp7EN91oP+xIBNGXlKnh9YBB0jsMb+KR0Nc8QsJq39:m3cTC+xYSUnT2e0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks