General
-
Target
130d68f4ee827440e075cf8cb11d4d03_JaffaCakes118
-
Size
235KB
-
Sample
240626-xj9sts1bkr
-
MD5
130d68f4ee827440e075cf8cb11d4d03
-
SHA1
efc9778b79370a45e63b4278b7de34176d1e03e2
-
SHA256
d6d0578255ea33b4692e263508cfb5fe628467354bd6b1557b233049c8754528
-
SHA512
46a6ae5a18e2b372ad8f0be184b74c447947d7a4c99abbf2a912596f024ace9fe20df2af732fa9fd80829b25414f106fc599cd83fd6601b0bee7934dc4955b37
-
SSDEEP
6144:i8FWrUrb1ESVtkUfgEZx7IphnqocAivpmU0vYV:UUrb1ESVtTfHbsqnbvpx0vYV
Static task
static1
Behavioral task
behavioral1
Sample
130d68f4ee827440e075cf8cb11d4d03_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
130d68f4ee827440e075cf8cb11d4d03_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
metasploit
encoder/fnstenv_mov
Targets
-
-
Target
130d68f4ee827440e075cf8cb11d4d03_JaffaCakes118
-
Size
235KB
-
MD5
130d68f4ee827440e075cf8cb11d4d03
-
SHA1
efc9778b79370a45e63b4278b7de34176d1e03e2
-
SHA256
d6d0578255ea33b4692e263508cfb5fe628467354bd6b1557b233049c8754528
-
SHA512
46a6ae5a18e2b372ad8f0be184b74c447947d7a4c99abbf2a912596f024ace9fe20df2af732fa9fd80829b25414f106fc599cd83fd6601b0bee7934dc4955b37
-
SSDEEP
6144:i8FWrUrb1ESVtkUfgEZx7IphnqocAivpmU0vYV:UUrb1ESVtTfHbsqnbvpx0vYV
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-