General
-
Target
1a3b09c3dc9fa9db9b232e2afd1fb8a6_JaffaCakes118
-
Size
72KB
-
Sample
240628-qb6b4stfkk
-
MD5
1a3b09c3dc9fa9db9b232e2afd1fb8a6
-
SHA1
ea10f2d676d6a5dad53e57efd60f32ab0fc95c3a
-
SHA256
957ac6190d0f27cf7bb449de4f38085ef1bdb78d7470b4a4f254e9d8a1ad14c5
-
SHA512
19224c98a89bda6f1e676726ffe33765e6648100c685e7626ece71025037a105487923cf5cc293a77ad6b677b12ac3b4a4a006a77b4258c95c42762ee7892b22
-
SSDEEP
1536:I8OvUuMv4KOmM7VXhTB5GV2dI0Q1054wnlIu+a8UFSuMb+KR0Nc8QsJq39:dOcu4q7thPlFQ1wfL+a8Hue0Nc8QsC9
Behavioral task
behavioral1
Sample
1a3b09c3dc9fa9db9b232e2afd1fb8a6_JaffaCakes118.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
1a3b09c3dc9fa9db9b232e2afd1fb8a6_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
metasploit
encoder/call4_dword_xor
Extracted
metasploit
windows/shell_reverse_tcp
192.168.200.20:4455
Extracted
metasploit
encoder/shikata_ga_nai
Targets
-
-
Target
1a3b09c3dc9fa9db9b232e2afd1fb8a6_JaffaCakes118
-
Size
72KB
-
MD5
1a3b09c3dc9fa9db9b232e2afd1fb8a6
-
SHA1
ea10f2d676d6a5dad53e57efd60f32ab0fc95c3a
-
SHA256
957ac6190d0f27cf7bb449de4f38085ef1bdb78d7470b4a4f254e9d8a1ad14c5
-
SHA512
19224c98a89bda6f1e676726ffe33765e6648100c685e7626ece71025037a105487923cf5cc293a77ad6b677b12ac3b4a4a006a77b4258c95c42762ee7892b22
-
SSDEEP
1536:I8OvUuMv4KOmM7VXhTB5GV2dI0Q1054wnlIu+a8UFSuMb+KR0Nc8QsJq39:dOcu4q7thPlFQ1wfL+a8Hue0Nc8QsC9
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-