General
-
Target
befd223b79cb8c3dac630a4b1487ab35_JaffaCakes118
-
Size
22KB
-
MD5
befd223b79cb8c3dac630a4b1487ab35
-
SHA1
d82413f3574e0532fe4750e9748a56f31e0860c2
-
SHA256
590892686ce3ff9a3bf51762bf3e36efda4b3a4078af297425a6a01bed9bc6fe
-
SHA512
f2d5c430926b8732c5c92ce2a6cf9e50701fcf0f8bdce50a13df4f6918a67a43bfc0d2c1a77eedb76ff4fb5b93c4ee730bc122e854719323ce6410dd709d0215
-
SSDEEP
192:ksHThcSGTgRqP81XblvkymVJC5SyClnOHPr3unv+wvEFhI0KCMFY:/c/a7vkyKEIh+Pr3uvrMnlxl
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
encoder/shikata_ga_nai
Extracted
Family
metasploit
Version
windows/shell_reverse_tcp
C2
192.168.1.254:5555
Signatures
-
Metasploit family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
befd223b79cb8c3dac630a4b1487ab35_JaffaCakes118
Headers
Sections