Overview

overview

10

Static

static

10

b20a894b2b...18.exe

windows7-x64

10

b20a894b2b...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    b20a894b2bacf26b26fe41909eac819e_JaffaCakes118

  • Size

    781KB

  • MD5

    b20a894b2bacf26b26fe41909eac819e

  • SHA1

    f6970f315a5b2425f416135dbd40e51a22a0d59b

  • SHA256

    59b0d26b0e43a94d4818eb67fa6a1786d239928cbb6b1d43ba94aa31349d4959

  • SHA512

    88b890a34dae1e629ea279260ff1c084cbe7887689912296d43a343385e030ce608123b317ddc89b1cfa664a7c8dd900f73aeda27e83dbb45815d7940681b114

  • SSDEEP

    6144:Q0wbhWZlJnCMeCpkyIx/e+FMi0wbhWZlJnCMeCpkygxPW+F:7U8Zl6VyIx/qU8Zl6VygxP

Score
10/10
metasploit

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

10.0.0.100:443

Signatures

  • Metasploit family
    metasploit
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b20a894b2bacf26b26fe41909eac819e_JaffaCakes118
    .exe windows:4 windows x64 arch:x64

    87bed5a7cba00c7e1f4015f1bdae2183


    Headers

    Imports

    Sections