General
-
Target
18bd01d1e1ff0e94f41946332d59dbad_JaffaCakes118
-
Size
9.7MB
-
Sample
240628-et1nsstbpp
-
MD5
18bd01d1e1ff0e94f41946332d59dbad
-
SHA1
62e8d7c975d1ec895af6cbc725e1eb9c5e5ee069
-
SHA256
73be46a3d3b65fb6a46399dd8bf31e82090716855f784856bf5033990c356ea9
-
SHA512
ecbf831a6f8dfc01257f138363cd265ab1c907b88b891902b14dac9d5474e3160b9496993484660fcf0b9853cbb73e21c249786c973217284a48ea3fcd3f8ff1
-
SSDEEP
12288:ZLN4dRboHyLnc8Qfy8n8sTVQlr2UqOsl539wjZ:ZLN4vQq8ndVQUUqOsl539wjZ
Static task
static1
Behavioral task
behavioral1
Sample
18bd01d1e1ff0e94f41946332d59dbad_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
18bd01d1e1ff0e94f41946332d59dbad_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
metasploit
encoder/fnstenv_mov
Targets
-
-
Target
18bd01d1e1ff0e94f41946332d59dbad_JaffaCakes118
-
Size
9.7MB
-
MD5
18bd01d1e1ff0e94f41946332d59dbad
-
SHA1
62e8d7c975d1ec895af6cbc725e1eb9c5e5ee069
-
SHA256
73be46a3d3b65fb6a46399dd8bf31e82090716855f784856bf5033990c356ea9
-
SHA512
ecbf831a6f8dfc01257f138363cd265ab1c907b88b891902b14dac9d5474e3160b9496993484660fcf0b9853cbb73e21c249786c973217284a48ea3fcd3f8ff1
-
SSDEEP
12288:ZLN4dRboHyLnc8Qfy8n8sTVQlr2UqOsl539wjZ:ZLN4vQq8ndVQUUqOsl539wjZ
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-