General

  • Target

    63d034eb4164753a021241d40694c663_JaffaCakes118

  • Size

    225KB

  • Sample

    240722-tbnzlsvgkh

  • MD5

    63d034eb4164753a021241d40694c663

  • SHA1

    74ea8de2903bec473fc889e4ca004f5e804e006b

  • SHA256

    47571097f9008a7a5a048862ed2993cad074a0e32eb3597918a062dece4d3c63

  • SHA512

    3223364a683d253c628a2523b6ab2d0ad2a9f6d89a3eb3ef69265e0fd9cd0a02c63a0d76e55e05c95ab7ff00fa3b20985a5e44d2bfa780616a19f5c489b28d41

  • SSDEEP

    6144:90MWHFGXyDp7RXeAWz8LtRi8zcLKZMW8T:976eyBwAWgLtRi8zSdT

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://208.44.229.38:443/AyBNg

Targets

    • Target

      63d034eb4164753a021241d40694c663_JaffaCakes118

    • Size

      225KB

    • MD5

      63d034eb4164753a021241d40694c663

    • SHA1

      74ea8de2903bec473fc889e4ca004f5e804e006b

    • SHA256

      47571097f9008a7a5a048862ed2993cad074a0e32eb3597918a062dece4d3c63

    • SHA512

      3223364a683d253c628a2523b6ab2d0ad2a9f6d89a3eb3ef69265e0fd9cd0a02c63a0d76e55e05c95ab7ff00fa3b20985a5e44d2bfa780616a19f5c489b28d41

    • SSDEEP

      6144:90MWHFGXyDp7RXeAWz8LtRi8zcLKZMW8T:976eyBwAWgLtRi8zSdT

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks