General

  • Target

    e37b0ef8c493301b8cb30bb476685f0b_JaffaCakes118

  • Size

    420KB

  • Sample

    240406-2vsqxadd4y

  • MD5

    e37b0ef8c493301b8cb30bb476685f0b

  • SHA1

    660e9b514c1df537d21c4944efffd4e9561350b6

  • SHA256

    3fa1a944128e13e372a928180a48e9d7b5ebc717c578da2b85c454cb3cd1be1e

  • SHA512

    7b14909d2325b633a1fb153c7929c371ebe562a5eaf18ab0d0fd4d563542bc72f2ced331d998914198ae2478e9597ff15987c84297679e77e2f90ca4c1106f9e

  • SSDEEP

    12288:AMsHuE9Wfsu6JtqLEqigh8gGW1+bvDO/jysJt/3o6o4E:AJp9c4oEHQf/jys//tLE

Score
10/10

Malware Config

Targets

    • Target

      e37b0ef8c493301b8cb30bb476685f0b_JaffaCakes118

    • Size

      420KB

    • MD5

      e37b0ef8c493301b8cb30bb476685f0b

    • SHA1

      660e9b514c1df537d21c4944efffd4e9561350b6

    • SHA256

      3fa1a944128e13e372a928180a48e9d7b5ebc717c578da2b85c454cb3cd1be1e

    • SHA512

      7b14909d2325b633a1fb153c7929c371ebe562a5eaf18ab0d0fd4d563542bc72f2ced331d998914198ae2478e9597ff15987c84297679e77e2f90ca4c1106f9e

    • SSDEEP

      12288:AMsHuE9Wfsu6JtqLEqigh8gGW1+bvDO/jysJt/3o6o4E:AJp9c4oEHQf/jys//tLE

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks