Extracted

• • Target

    f00ea16417ee80ae8bf132df525459e9_JaffaCakes118

  • Size

    160KB

  • MD5

    f00ea16417ee80ae8bf132df525459e9

  • SHA1

    4cc0417aaa3c931345d83141e1e8fdc03b9c4223

  • SHA256

    fc2bc41501d6f8d37111626863cec9e9b345ce8e8250bd2466f62a1b3b873773

  • SHA512

    25c406b2a850e8c94079fe6feab90cab4d47c5ed6dd7b20b69c8d71b75a40d19323938e2be7befed84c311d753163f62a293d20a4e83d4ffd9cc8f17d1f7f72e

  • SSDEEP

    3072:JYAq+Bt0h0phE8M4qTvpmwEBn3Obl4kUGE84NXaf0:JYtipO4qTvwwm0KD/e0

  Score

  10^/10

  metasploitaspackv2backdoordiscoverytrojan

  • MetaSploit

    Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    trojanbackdoormetasploit

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2