General

  • Target

    62cfef5ba8761cd132899d813222ea5e_JaffaCakes118

  • Size

    72KB

  • Sample

    240722-l798qasflj

  • MD5

    62cfef5ba8761cd132899d813222ea5e

  • SHA1

    cc350eee7445a89355f1c9d7a9ace9d7c8faa91a

  • SHA256

    ad050aaf16ae40d16ef8194d19a62c65869c8f50cb95d2f7b2569ccb78dd36eb

  • SHA512

    1921476e460a20ace6fc832fd275cf9938a31e65b3e51373116a51f5ac405c1958a5b2b4006743865a32f290d7871525c4917ec2d8975603e30345dd4e49fd2f

  • SSDEEP

    1536:IKJADkYE1xjNQmxjp5O42l8Ntk8yuynBbMb+KR0Nc8QsJq39:5Ao1xSmxjT0l8NtJyBbe0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

178.248.85.67:4444

Targets

    • Target

      62cfef5ba8761cd132899d813222ea5e_JaffaCakes118

    • Size

      72KB

    • MD5

      62cfef5ba8761cd132899d813222ea5e

    • SHA1

      cc350eee7445a89355f1c9d7a9ace9d7c8faa91a

    • SHA256

      ad050aaf16ae40d16ef8194d19a62c65869c8f50cb95d2f7b2569ccb78dd36eb

    • SHA512

      1921476e460a20ace6fc832fd275cf9938a31e65b3e51373116a51f5ac405c1958a5b2b4006743865a32f290d7871525c4917ec2d8975603e30345dd4e49fd2f

    • SSDEEP

      1536:IKJADkYE1xjNQmxjp5O42l8Ntk8yuynBbMb+KR0Nc8QsJq39:5Ao1xSmxjT0l8NtJyBbe0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks