Overview

overview

10

Static

static

10

372d2567a9...18.dll

windows7-x64

10

372d2567a9...18.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    372d2567a923a8ff0dd9ae52115d099d_JaffaCakes118

  • Size

    5KB

  • MD5

    372d2567a923a8ff0dd9ae52115d099d

  • SHA1

    0d31a4a0399364c1741f6ade39114cc0ac37d7e1

  • SHA256

    a944d36a1a0e675e2156600b61ab359cc30e52a8b614f71d2c7c8a1f00c8c6b2

  • SHA512

    8dda2b8a904ae2025ddeceabf6581b203cca98402590fe2a17d3ff9cea15f2e59cace9c2bf5f6be704857df6cdd31750cbbf46e9d9343e2bf41daf1737df2e16

  • SSDEEP

    48:qFGFajFK3zSIe7h/TMXhZo+lC56ai+e+m:eGFajRJhwo9Bv

Score
10/10
metasploit

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_http

C2

http://149.248.6.193:2010/vUpmYz6iraJYs1myB5W86AB-bjq1Uh2Nqm9a2TPjyvEv2Y6Qk90jkSb0TemBWMd-Ch3ggKvrHv6QQrkivKwqPzR4pUHQSEKvbyAhA3j4JFnEL7zQriRSjsaZuKAGUfexF9EsrmaUWMWf59blz1n

Signatures

  • Metasploit family
    metasploit
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 372d2567a923a8ff0dd9ae52115d099d_JaffaCakes118
    .dll windows:6 windows x86 arch:x86

    22647e5b96f2de81d003f25d98d7d2dc


    Headers

    Imports

    Sections