General

  • Target

    63c85dd96018516957ea0337fc87e71d_JaffaCakes118

  • Size

    72KB

  • Sample

    240722-s528navdrd

  • MD5

    63c85dd96018516957ea0337fc87e71d

  • SHA1

    bd7f70221e60391fca2ae6aeced2e78ebfdb8034

  • SHA256

    1a8f5ee22a17bdf14e5bca2889f8c1ec99f4987a94816992f2519c74ef022c5f

  • SHA512

    4e2bc3c78fb21a097d068aece3ce8f21308538a6a79103d11dd590d981f0312d930b6518c0fff3bc0d7985ca36b1e13e0be1998fcd9f5183ef3b69c3bbaf3287

  • SSDEEP

    1536:IXZ2NfIPLTAApzT98OuijprFq4v9U9Mb+KR0Nc8QsJq39:QZvlpGcJq8Ye0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

172.16.121.1:443

Targets

    • Target

      63c85dd96018516957ea0337fc87e71d_JaffaCakes118

    • Size

      72KB

    • MD5

      63c85dd96018516957ea0337fc87e71d

    • SHA1

      bd7f70221e60391fca2ae6aeced2e78ebfdb8034

    • SHA256

      1a8f5ee22a17bdf14e5bca2889f8c1ec99f4987a94816992f2519c74ef022c5f

    • SHA512

      4e2bc3c78fb21a097d068aece3ce8f21308538a6a79103d11dd590d981f0312d930b6518c0fff3bc0d7985ca36b1e13e0be1998fcd9f5183ef3b69c3bbaf3287

    • SSDEEP

      1536:IXZ2NfIPLTAApzT98OuijprFq4v9U9Mb+KR0Nc8QsJq39:QZvlpGcJq8Ye0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks