General

  • Target

    e486aa0ef257bc79fda10009abf2d2be_JaffaCakes118

  • Size

    629KB

  • Sample

    240407-knfz4ahc2v

  • MD5

    e486aa0ef257bc79fda10009abf2d2be

  • SHA1

    84e668a5b0358d1a881a69df5f3292de53251176

  • SHA256

    5492e2986b5f7921b0a5ae6f457823912bfb790c478dae883602324e7444709e

  • SHA512

    b6664ef7238e6008fb74025f52e0f8c82f85152ab49bbc421e9941692782fba2cae3acde6b5f81f0a893078b7bd3636ff5d1e283231724ecf2c63b5a8cc0103b

  • SSDEEP

    12288:LVt+w8wyv/F66WoJfHOgJBFUZljz82qIv0e/gDSo:xt+w5y1DJfRJBuzWWO

Score
10/10

Malware Config

Targets

    • Target

      e486aa0ef257bc79fda10009abf2d2be_JaffaCakes118

    • Size

      629KB

    • MD5

      e486aa0ef257bc79fda10009abf2d2be

    • SHA1

      84e668a5b0358d1a881a69df5f3292de53251176

    • SHA256

      5492e2986b5f7921b0a5ae6f457823912bfb790c478dae883602324e7444709e

    • SHA512

      b6664ef7238e6008fb74025f52e0f8c82f85152ab49bbc421e9941692782fba2cae3acde6b5f81f0a893078b7bd3636ff5d1e283231724ecf2c63b5a8cc0103b

    • SSDEEP

      12288:LVt+w8wyv/F66WoJfHOgJBFUZljz82qIv0e/gDSo:xt+w5y1DJfRJBuzWWO

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks