General
-
Target
044d43a3f1aeb7d22092969bc2b304c9_JaffaCakes118
-
Size
4KB
-
MD5
044d43a3f1aeb7d22092969bc2b304c9
-
SHA1
73def81565bc50067ccda1a96c8d9ed659e6ddb2
-
SHA256
af0541657a503ab463300627f97c16b743cda1778673520d7e20e3b0b5338080
-
SHA512
c84a7e1273b343ed9481f6711d81283236c925786f996ff00c271070da6fb53d2b9d5f7fb97361b48ba3741309c6c2bf5e0ec262ffbe026b5d4c39df35c27c1c
-
SSDEEP
48:8AioSmJTEFMpRsTQEoVKO1bwlp+ttaQITuIHOP/3NMoKmJsWArBTy3HGJ7YdO72G:h2uTEivsTjeb0IRXhKNWUBTkHXTZDm3
Score
10/10
Malware Config
Extracted
Family
metasploit
Version
encoder/shikata_ga_nai
Extracted
Family
metasploit
Version
windows/shell_reverse_tcp
C2
140.197.212.160:5555
Signatures
-
Metasploit family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
044d43a3f1aeb7d22092969bc2b304c9_JaffaCakes118
f9ade0aa18f660a34a4fa23392e21838
Headers
Imports
Sections