General

  • Target

    634c29e210661a3e46741c7546a0310d_JaffaCakes118

  • Size

    5.7MB

  • Sample

    240722-qdy1taydng

  • MD5

    634c29e210661a3e46741c7546a0310d

  • SHA1

    c0cb7a87410240ade67fbac32c09ee45c021cd46

  • SHA256

    0e840b0cc09f0334696e05fe6429e1ea2c376b4de9f4c2c0cc1ae4acd03e974d

  • SHA512

    2dc4ad715c923312a1e348455b09d7417d3025c26d1741ae4e546ef9714f9820ebd94a9119593d824b0f7f06aa247fccab6550631e3445bc87f1d65c93b733aa

  • SSDEEP

    98304:dxQeMN32HGda/7JNk2heNhj786Hw9oecJllmv+mtokgt11Ix4cSCQ:YeyBa585soVm2mton+ucB

Malware Config

Extracted

Family

metasploit

Version

encoder/call4_dword_xor

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Targets

    • Target

      634c29e210661a3e46741c7546a0310d_JaffaCakes118

    • Size

      5.7MB

    • MD5

      634c29e210661a3e46741c7546a0310d

    • SHA1

      c0cb7a87410240ade67fbac32c09ee45c021cd46

    • SHA256

      0e840b0cc09f0334696e05fe6429e1ea2c376b4de9f4c2c0cc1ae4acd03e974d

    • SHA512

      2dc4ad715c923312a1e348455b09d7417d3025c26d1741ae4e546ef9714f9820ebd94a9119593d824b0f7f06aa247fccab6550631e3445bc87f1d65c93b733aa

    • SSDEEP

      98304:dxQeMN32HGda/7JNk2heNhj786Hw9oecJllmv+mtokgt11Ix4cSCQ:YeyBa585soVm2mton+ucB

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    • Loads dropped DLL

MITRE ATT&CK Matrix

Tasks