General

  • Target

    82c61e9a59ee7fce511f8b4edc8fa131_JaffaCakes118

  • Size

    72KB

  • Sample

    241031-m7d1ysykdr

  • MD5

    82c61e9a59ee7fce511f8b4edc8fa131

  • SHA1

    733195fb5ccb9407bb477f83bb0408fe9008aea4

  • SHA256

    b0399095cc59aaae6c453306307b10323e84865a9055210c05a6e0e8c2a81db8

  • SHA512

    ad434760a30a6cdb7c4ad204cc6265a54e64ad28ae9c5988d7cdb29a67d4ce0b59ea7c68b25d394eeb15fd25de73c2951522188d2bf898d01649e2d70c441897

  • SSDEEP

    1536:IAeRTNtFilv9npAw+EdQMjTibS323uQ2mmqsMb+KR0Nc8QsJq39:Fo0nSw+aRjTV5Q219e0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

68.46.185.158:5555

Targets

    • Target

      82c61e9a59ee7fce511f8b4edc8fa131_JaffaCakes118

    • Size

      72KB

    • MD5

      82c61e9a59ee7fce511f8b4edc8fa131

    • SHA1

      733195fb5ccb9407bb477f83bb0408fe9008aea4

    • SHA256

      b0399095cc59aaae6c453306307b10323e84865a9055210c05a6e0e8c2a81db8

    • SHA512

      ad434760a30a6cdb7c4ad204cc6265a54e64ad28ae9c5988d7cdb29a67d4ce0b59ea7c68b25d394eeb15fd25de73c2951522188d2bf898d01649e2d70c441897

    • SSDEEP

      1536:IAeRTNtFilv9npAw+EdQMjTibS323uQ2mmqsMb+KR0Nc8QsJq39:Fo0nSw+aRjTV5Q219e0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    • Metasploit family

MITRE ATT&CK Enterprise v15

Tasks