General

  • Target

    e464218ac22202be3b93aee8fef3e8b4_JaffaCakes118

  • Size

    420KB

  • Sample

    240407-jb265agd74

  • MD5

    e464218ac22202be3b93aee8fef3e8b4

  • SHA1

    5cb26d89a3fa50b81b8b720881724d803551f11b

  • SHA256

    652e1d6e2c9ae99f3542c203905a685df7f4a28e25e5af088d7b6da30ba56ba2

  • SHA512

    53af91ae2419e77ed3d874f7d0669589f84e9200ed7f76f4e0a91d6a060763d82ccb04c0cf33bbeefe104f9ba4b64ade6e996d500eb43f604016e2f060bb72eb

  • SSDEEP

    12288:l0IcSBrNDNemFusFdTZm553AgPuK+Gy/ld:l0eBremFFdTk5DGdd

Score
10/10

Malware Config

Targets

    • Target

      e464218ac22202be3b93aee8fef3e8b4_JaffaCakes118

    • Size

      420KB

    • MD5

      e464218ac22202be3b93aee8fef3e8b4

    • SHA1

      5cb26d89a3fa50b81b8b720881724d803551f11b

    • SHA256

      652e1d6e2c9ae99f3542c203905a685df7f4a28e25e5af088d7b6da30ba56ba2

    • SHA512

      53af91ae2419e77ed3d874f7d0669589f84e9200ed7f76f4e0a91d6a060763d82ccb04c0cf33bbeefe104f9ba4b64ade6e996d500eb43f604016e2f060bb72eb

    • SSDEEP

      12288:l0IcSBrNDNemFusFdTZm553AgPuK+Gy/ld:l0eBremFFdTk5DGdd

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks