General

  • Target

    29f5b68fc83966fe6cc8a3a5ad7175d6_JaffaCakes118

  • Size

    72KB

  • Sample

    240707-n2yzls1fjm

  • MD5

    29f5b68fc83966fe6cc8a3a5ad7175d6

  • SHA1

    c296e8495c477b1ba6d9d7398df0dfc47de78e74

  • SHA256

    e811bc9bb156d1698359ec20c92a8cecd5157cebd6177f1e834f8b4d8102552d

  • SHA512

    a25da4337f5b8988873933033bc24afc5f60e90627ab63e9bae970d2c49d5ce710b8f3e77a5dcf0fde4ff49baac38702902867cebc71580305907d630aefd25e

  • SSDEEP

    1536:IbmzeJwwUL8RYE6UTbHGl7G1kiZ5YMb+KR0Nc8QsJq39:mM+88Zorike0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

10.10.150.69:53

Targets

    • Target

      29f5b68fc83966fe6cc8a3a5ad7175d6_JaffaCakes118

    • Size

      72KB

    • MD5

      29f5b68fc83966fe6cc8a3a5ad7175d6

    • SHA1

      c296e8495c477b1ba6d9d7398df0dfc47de78e74

    • SHA256

      e811bc9bb156d1698359ec20c92a8cecd5157cebd6177f1e834f8b4d8102552d

    • SHA512

      a25da4337f5b8988873933033bc24afc5f60e90627ab63e9bae970d2c49d5ce710b8f3e77a5dcf0fde4ff49baac38702902867cebc71580305907d630aefd25e

    • SSDEEP

      1536:IbmzeJwwUL8RYE6UTbHGl7G1kiZ5YMb+KR0Nc8QsJq39:mM+88Zorike0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks