General

  • Target

    e1a7b4cbe8e8aabce05747a34ce3a875_JaffaCakes118

  • Size

    7.3MB

  • Sample

    240406-lpyrzafe2t

  • MD5

    e1a7b4cbe8e8aabce05747a34ce3a875

  • SHA1

    f31a6ca925f4a040bc29982ffb1cf6f0bc8b0843

  • SHA256

    4317afbf25f7145ec2e84eee745d09c9f6e8a0973a460892fc4fa76595bfa319

  • SHA512

    5db4ecec060dd771b77825106a554a7e91abc4da3431cff39fb4096ddad2309a230d28bf26777cb20d990678f7c21784aa00135057130517998488d9c79e520d

  • SSDEEP

    98304:dxC3ud6MOIvysi7CQKzo5qphIHVruP3WpF3UdE1hZHEdLF00n:SGQgMkhgJuP32+dmhZk/08

Score
10/10

Malware Config

Targets

    • Target

      e1a7b4cbe8e8aabce05747a34ce3a875_JaffaCakes118

    • Size

      7.3MB

    • MD5

      e1a7b4cbe8e8aabce05747a34ce3a875

    • SHA1

      f31a6ca925f4a040bc29982ffb1cf6f0bc8b0843

    • SHA256

      4317afbf25f7145ec2e84eee745d09c9f6e8a0973a460892fc4fa76595bfa319

    • SHA512

      5db4ecec060dd771b77825106a554a7e91abc4da3431cff39fb4096ddad2309a230d28bf26777cb20d990678f7c21784aa00135057130517998488d9c79e520d

    • SSDEEP

      98304:dxC3ud6MOIvysi7CQKzo5qphIHVruP3WpF3UdE1hZHEdLF00n:SGQgMkhgJuP32+dmhZk/08

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks