General
-
Target
1b816fafbf4fa1cff9c6a51e26d2d03a_JaffaCakes118
-
Size
112KB
-
Sample
240701-qycnbavbmb
-
MD5
1b816fafbf4fa1cff9c6a51e26d2d03a
-
SHA1
6d7dace7abc31f731ba10349cd0f2c02494b3ad6
-
SHA256
cdec0465606b1777c366d9ff4562d913ead04f4689bc9e293a014da4c0e7c965
-
SHA512
da6b6fee4fd93ca2e2cc3693851d2efd7f6a7b77b8f9bf7ef08a64eefe265f61554f9b3ff4a6edf2489fedcfe9e03958d4d1fd398ec68582865de57b7b79beca
-
SSDEEP
3072:TJzUrbhSB+kPsgdopiEw1uEPP4vz50ToXtBsa9:NYcX0vpiNfXimTor
Static task
static1
Behavioral task
behavioral1
Sample
1b816fafbf4fa1cff9c6a51e26d2d03a_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
1b816fafbf4fa1cff9c6a51e26d2d03a_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Extracted
metasploit
windows/download_exec
http://192.168.1.100:443/A5YTX
Targets
-
-
Target
1b816fafbf4fa1cff9c6a51e26d2d03a_JaffaCakes118
-
Size
112KB
-
MD5
1b816fafbf4fa1cff9c6a51e26d2d03a
-
SHA1
6d7dace7abc31f731ba10349cd0f2c02494b3ad6
-
SHA256
cdec0465606b1777c366d9ff4562d913ead04f4689bc9e293a014da4c0e7c965
-
SHA512
da6b6fee4fd93ca2e2cc3693851d2efd7f6a7b77b8f9bf7ef08a64eefe265f61554f9b3ff4a6edf2489fedcfe9e03958d4d1fd398ec68582865de57b7b79beca
-
SSDEEP
3072:TJzUrbhSB+kPsgdopiEw1uEPP4vz50ToXtBsa9:NYcX0vpiNfXimTor
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-