General
-
Target
2e7d8ea84d0cf0a5bfc8755a96ee68cd_JaffaCakes118
-
Size
4KB
-
MD5
2e7d8ea84d0cf0a5bfc8755a96ee68cd
-
SHA1
c08cc9bb130dfc28d9202ec69c10bc7ea32dec85
-
SHA256
40c73a18c5b38c74d4a73a1844663b7e7d95fd9a7df363c766e4ac27f8724953
-
SHA512
7361ea2998f3301cb249e14b0a18712b0e64a60808ec78712783bde860a5f4da914ac46c918ce8b8e7f007bbec6a444e0c54ae9517cb8c170da6f801a323d870
-
SSDEEP
96:6OrvkQ1EoKisrONjgwrcS2nERaZiV96cYeVKIMk:/kWQipjg+KKa0j6cYeVKIMk
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
encoder/shikata_ga_nai
Extracted
Family
metasploit
Version
windows/shell_reverse_tcp
C2
84.78.201.86:4444
Signatures
-
Metasploit family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2e7d8ea84d0cf0a5bfc8755a96ee68cd_JaffaCakes118
f9ade0aa18f660a34a4fa23392e21838
Headers
Imports
Sections