Overview

overview

10

Static

static

10

de9a9a9aee...18.exe

windows7-x64

10

de9a9a9aee...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    de9a9a9aeecba0aa6e612695f4f7bd8e_JaffaCakes118

  • Size

    21KB

  • MD5

    de9a9a9aeecba0aa6e612695f4f7bd8e

  • SHA1

    e0eaec8092942b97ac61ccd3a073da8aca060a77

  • SHA256

    d734e59b3037259fb84a8867167422b98f218aaf5bf6ee83edd8cd7ead074bcc

  • SHA512

    3a0f14f5cab53e5ac33e6d707ab7e41015da12e34d43fcc65553afd5ed0c08273d0011a8640263985d82d4a07690a411a1bcc1afe57f643433c15dd9e3567cf5

  • SSDEEP

    192:QXKcyowJL/RkmEPJUuJFuzf77yowJL/RkmEPJUuJFuzf7U:MKcYJLRktRgHYJLRktRg

Score
10/10
metasploit

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.11.69:4444

Signatures

  • Metasploit family
    metasploit
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • de9a9a9aeecba0aa6e612695f4f7bd8e_JaffaCakes118
    .exe windows:5 windows x86 arch:x86

    9fc2d3b8d1032c25ebeeb29a8f8970c9


    Headers

    Imports

    Sections