General
-
Target
148105cead7f19db49bd1bab041b6375_JaffaCakes118
-
Size
216KB
-
Sample
240627-dyd5xszdng
-
MD5
148105cead7f19db49bd1bab041b6375
-
SHA1
f61d28ac3d4bca5ca7d2638179c351798d442d12
-
SHA256
1195c53efafe2d245ac670d9d547414a1c63d776dd3d4b4d765f6334b841ea69
-
SHA512
b7bef4758fed874597c643265063f6928bb96dc85230313e609c90f1c315c188a12b7022b859a0df546bc5d2d7ce00c2f0a4b3384617e379987d61ccbce96f20
-
SSDEEP
3072:I8xmk8gCsASG9WIQ9gOvfiLzGQXSzJei1YgdcBVG7xUlHpyB3vtK7tX82FI9o:bok80ASdyAiXGQ8JVWgdcy7G0vsy
Static task
static1
Behavioral task
behavioral1
Sample
148105cead7f19db49bd1bab041b6375_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
148105cead7f19db49bd1bab041b6375_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
metasploit
encoder/shikata_ga_nai
Extracted
metasploit
windows/shell_reverse_tcp
0.0.17.92:4444
Targets
-
-
Target
148105cead7f19db49bd1bab041b6375_JaffaCakes118
-
Size
216KB
-
MD5
148105cead7f19db49bd1bab041b6375
-
SHA1
f61d28ac3d4bca5ca7d2638179c351798d442d12
-
SHA256
1195c53efafe2d245ac670d9d547414a1c63d776dd3d4b4d765f6334b841ea69
-
SHA512
b7bef4758fed874597c643265063f6928bb96dc85230313e609c90f1c315c188a12b7022b859a0df546bc5d2d7ce00c2f0a4b3384617e379987d61ccbce96f20
-
SSDEEP
3072:I8xmk8gCsASG9WIQ9gOvfiLzGQXSzJei1YgdcBVG7xUlHpyB3vtK7tX82FI9o:bok80ASdyAiXGQ8JVWgdcy7G0vsy
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-