General

  • Target

    JaffaCakes118_815ca1caef39180572bf4bedb7908a3be2e9f2cb24a01d185de1278ab5eb6860

  • Size

    72KB

  • Sample

    241222-mwe4wavnfs

  • MD5

    3c9b4517699e829ee235b7abf433df1c

  • SHA1

    8d535d7f5618320f82eb931c1582ef2a3280a574

  • SHA256

    815ca1caef39180572bf4bedb7908a3be2e9f2cb24a01d185de1278ab5eb6860

  • SHA512

    7f2be96b20f42305ca3bb78745b44db4260b1a9625495e2159b873e1d820360799f15061714f57a71ab487e060d61690fd0d3cd60ad98a5c59c9db3374ff4eba

  • SSDEEP

    1536:IKCFfIaIk9ztNzRm/HJZkZqlzxyMcXAQMb+KR0Nc8QsJq39:nCZIbUxNt+peZqlNyPXAQe0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

70.34.219.215:443

Targets

    • Target

      JaffaCakes118_815ca1caef39180572bf4bedb7908a3be2e9f2cb24a01d185de1278ab5eb6860

    • Size

      72KB

    • MD5

      3c9b4517699e829ee235b7abf433df1c

    • SHA1

      8d535d7f5618320f82eb931c1582ef2a3280a574

    • SHA256

      815ca1caef39180572bf4bedb7908a3be2e9f2cb24a01d185de1278ab5eb6860

    • SHA512

      7f2be96b20f42305ca3bb78745b44db4260b1a9625495e2159b873e1d820360799f15061714f57a71ab487e060d61690fd0d3cd60ad98a5c59c9db3374ff4eba

    • SSDEEP

      1536:IKCFfIaIk9ztNzRm/HJZkZqlzxyMcXAQMb+KR0Nc8QsJq39:nCZIbUxNt+peZqlNyPXAQe0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    • Metasploit family

MITRE ATT&CK Enterprise v15

Tasks