General
-
Target
b9fd98f79211d3511846f926a50116bc_JaffaCakes118
-
Size
4KB
-
MD5
b9fd98f79211d3511846f926a50116bc
-
SHA1
50c92f82024444a88cd3de9f8a5013f2b66c664e
-
SHA256
485eb4c8a1fd45f295f39c179026f86c7ed036b9aeb07232b2c4092808990ebb
-
SHA512
f8d897b4e7c07dad26af9251c2bbfd00dab6d8743a8d408965f82678988c14eda74a2d3de2148cda7336148fa5bccd18f2d7b4b5c3157f9221e1f9873c2abd61
-
SSDEEP
96:3VrvoNT/P3a8beVk9edaL30ZsbZzaRWXylW:lr+PK8NUQZz0WXylW
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
encoder/shikata_ga_nai
Extracted
Family
metasploit
Version
windows/download_exec
C2
http://192.168.1.3:8443/INITM
Signatures
-
Metasploit family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
b9fd98f79211d3511846f926a50116bc_JaffaCakes118
f9ade0aa18f660a34a4fa23392e21838
Headers
Imports
Sections