Overview

overview

10

Static

static

1

JaffaCakes...b2.exe

windows7-x64

10

JaffaCakes...b2.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_2b3f4191f1d7d043c6275b284bcbc734e5bda00db381fac9aa368afa950687b2

  • Size

    4.4MB

  • Sample

    241225-ed2wxsxjes

  • MD5

    fc8097487c672063554cd3aee5b0c26b

  • SHA1

    a8ee15c4fec1c458730fd94dd1007f7a6b66a91f

  • SHA256

    2b3f4191f1d7d043c6275b284bcbc734e5bda00db381fac9aa368afa950687b2

  • SHA512

    c3ff0ce3c448ca17d96ac18e7e0d85c71d45e65b692feddef9a0cca4304b4aa8bae124d0f36a95c542a27492c4cb05b5f91709df4709f018e82e965d68401878

  • SSDEEP

    98304:l8FpUmLIBS5xSnIDCIitVdfgCraq8R9tdzPCUFYXrVIrgRr3:lSOmLICUnIDCIiVdgewt1PFYXiURr3

Score
10/10
gluptebametasploitbackdoordiscoverydropperloadertrojan

Malware Config

Extracted

Family

metasploit

Version

windows/single_exec

Targets

    • Target

      JaffaCakes118_2b3f4191f1d7d043c6275b284bcbc734e5bda00db381fac9aa368afa950687b2

    • Size

      4.4MB

    • MD5

      fc8097487c672063554cd3aee5b0c26b

    • SHA1

      a8ee15c4fec1c458730fd94dd1007f7a6b66a91f

    • SHA256

      2b3f4191f1d7d043c6275b284bcbc734e5bda00db381fac9aa368afa950687b2

    • SHA512

      c3ff0ce3c448ca17d96ac18e7e0d85c71d45e65b692feddef9a0cca4304b4aa8bae124d0f36a95c542a27492c4cb05b5f91709df4709f018e82e965d68401878

    • SSDEEP

      98304:l8FpUmLIBS5xSnIDCIitVdfgCraq8R9tdzPCUFYXrVIrgRr3:lSOmLICUnIDCIiVdgewt1PFYXiURr3

    Score
    10/10
    gluptebametasploitbackdoordropperloadertrojandiscovery

    • Glupteba

      Glupteba is a modular loader written in Golang with various components.

      loaderdropperglupteba

    • Glupteba family

      glupteba

    • Glupteba payload

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit

    • Metasploit family

      metasploit
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks