General
-
Target
b799cff7f21183e074ef9be8fcd9559b_JaffaCakes118
-
Size
39KB
-
MD5
b799cff7f21183e074ef9be8fcd9559b
-
SHA1
5296655c6c2f460ab0cc6b89be219d5a22abc978
-
SHA256
0795ad523f93bcd49bcb036fe5955fd5a3b1e830a69393f2480f7df26332c7ec
-
SHA512
f9c865f8eba9ff3d550f9c2643810fdb51d65edd28f3b4fa10220a0e7df5f1618e62c52c3e87d9f5cfeda1c358497b58b063566f6757cbb9e45fa12a7eaf6e1e
-
SSDEEP
768:IjJb15mUTa5G9AlnLP+fEWs7gmxyMO+aW9bSiU4lVjwTw:IjxGUKG9AtP+fE5TyCaW9bSGjwTw
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
encoder/call4_dword_xor
Extracted
Family
metasploit
Version
windows/shell_reverse_tcp
C2
86.205.39.73:4444
Signatures
-
Metasploit family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
b799cff7f21183e074ef9be8fcd9559b_JaffaCakes118
Headers
Sections