General

  • Target

    e4867fdf20f6955f65e7620482f3dc32_JaffaCakes118

  • Size

    432KB

  • Sample

    240407-km899ahb9x

  • MD5

    e4867fdf20f6955f65e7620482f3dc32

  • SHA1

    018e9a6a569061465cb462cca2a49009f0959b67

  • SHA256

    7e5a3db2673b41e9ab3d92983e761767cfe4519b2fbab38c771b996b243d7aab

  • SHA512

    9b853be9652748405ac0169d62e60dde9679cb494da7d4f4b2c25d40aa7ccb844734b82a8bc4b407197a16b6f5e23ceb33daea2a76e7bc6ece91bcb109744a79

  • SSDEEP

    12288:MUCmZiCPmpwK/awchFcIyMy/+6oIiSeJxc10FybeLO:KCPjKzckQD6xeM10F6H

Score
10/10

Malware Config

Targets

    • Target

      e4867fdf20f6955f65e7620482f3dc32_JaffaCakes118

    • Size

      432KB

    • MD5

      e4867fdf20f6955f65e7620482f3dc32

    • SHA1

      018e9a6a569061465cb462cca2a49009f0959b67

    • SHA256

      7e5a3db2673b41e9ab3d92983e761767cfe4519b2fbab38c771b996b243d7aab

    • SHA512

      9b853be9652748405ac0169d62e60dde9679cb494da7d4f4b2c25d40aa7ccb844734b82a8bc4b407197a16b6f5e23ceb33daea2a76e7bc6ece91bcb109744a79

    • SSDEEP

      12288:MUCmZiCPmpwK/awchFcIyMy/+6oIiSeJxc10FybeLO:KCPjKzckQD6xeM10F6H

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks