Analysis
-
max time kernel
121s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
28-06-2024 11:46
Static task
static1
Behavioral task
behavioral1
Sample
19ff1807cf5cf5965d3cd868e34d311f_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
19ff1807cf5cf5965d3cd868e34d311f_JaffaCakes118.exe
Resource
win10v2004-20240611-en
General
-
Target
19ff1807cf5cf5965d3cd868e34d311f_JaffaCakes118.exe
-
Size
15KB
-
MD5
19ff1807cf5cf5965d3cd868e34d311f
-
SHA1
219901d8e10c42f8312c464c499a50500bbc092e
-
SHA256
719d9ca3f1375e34d70eb68e65ba66b75f5cf2c76308f9362071decfc776ace2
-
SHA512
2460b65f1ac9def304c055ccc6c696c934bbe1505ad01e21f7f944a435f2a2093606cb2a35b94092162f10c88dbc82f330d017a1cb47162f27a1f1ab520dfacf
-
SSDEEP
192:J006OkQk0tDWTW20ysS80kog+JiB1ZXlrR7b:J006JQk0YTWwqFxRZXx1b
Malware Config
Extracted
metasploit
windows/shell_reverse_tcp
192.168.1.2:4444
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.