General

  • Target

    4b7fee184229223c498c61fa31382f9c_JaffaCakes118

  • Size

    72KB

  • MD5

    4b7fee184229223c498c61fa31382f9c

  • SHA1

    0a3371916a1d1780cbe719647aeaaf65bff9952d

  • SHA256

    c1dc9167aad08c44a531b9296589020ef582848acd137a6cc2da361fb230ecec

  • SHA512

    f2e6ac9966f853942e939231f639c9b2be4af2aef694fcc7888caaf44f3c51827c3f133619bfaefb68c1c81489ac086cfe0507c8bae6ad6db0c850c820600bbb

  • SSDEEP

    1536:IUqBHj24fpX7RYIInGwck3ONYvGzMb+KR0Nc8QsJq39:vqBHtfpLRWnGBvQIe0Nc8QsC9

Score
10/10

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.1.2:1337

Signatures

  • Metasploit family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4b7fee184229223c498c61fa31382f9c_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    481f47bbb2c9c21e108d65f52b04c448


    Headers

    Imports

    Sections