General

  • Target

    457ef4c26a814a8646793f60a906869e_JaffaCakes118

  • Size

    72KB

  • MD5

    457ef4c26a814a8646793f60a906869e

  • SHA1

    78d82b6c87616d2bf75a109cd35880d0717f1a4d

  • SHA256

    65fb0f525b7ec7ec3061b409c07fbaf49cbdfb82b02d4e4cd1a823276f2154d8

  • SHA512

    cb6284bd29990852058fee60bf71d3b755192cdf4b86b873e40812acca5b44fe83998008b82409b4d381c58e9743261d08d439bfcaa2730c7b4c648994be0a4f

  • SSDEEP

    1536:I3iXXJfKPBOfM2DHzK+2QgwBH7tsuxsJMb+KR0Nc8QsJq39:KiJyP6M2DHW+21wZHxae0Nc8QsC9

Score
10/10

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.115.119:4444

Signatures

  • Metasploit family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 457ef4c26a814a8646793f60a906869e_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    481f47bbb2c9c21e108d65f52b04c448


    Headers

    Imports

    Sections