General

  • Target

    e6f6baac7a158fd0d999cc00fffac4c4_JaffaCakes118

  • Size

    742KB

  • Sample

    240408-jjpwrscb38

  • MD5

    e6f6baac7a158fd0d999cc00fffac4c4

  • SHA1

    b207af38b9adaa91b1afbb06a592814f338e75c1

  • SHA256

    4755cb2de7918708fdf035c996714d1d34d6d00f50274f6b6305d1990b05f871

  • SHA512

    44875cf16ee9cf5abf05ee7aa1c2a1953235227791fbecb0a921abd8df564b9ed87c02f48ce85606e260531722fef6e428f5ad997331b8812d3e423cf6f9650f

  • SSDEEP

    12288:VAwSfxL/2Dc3vDLLmt0LDQewsHj1+EnjYB26TEFGnFYAcX+mbMoFGQ:2+ewsHj1+2jWEFqy9X+sMoF9

Score
10/10

Malware Config

Targets

    • Target

      e6f6baac7a158fd0d999cc00fffac4c4_JaffaCakes118

    • Size

      742KB

    • MD5

      e6f6baac7a158fd0d999cc00fffac4c4

    • SHA1

      b207af38b9adaa91b1afbb06a592814f338e75c1

    • SHA256

      4755cb2de7918708fdf035c996714d1d34d6d00f50274f6b6305d1990b05f871

    • SHA512

      44875cf16ee9cf5abf05ee7aa1c2a1953235227791fbecb0a921abd8df564b9ed87c02f48ce85606e260531722fef6e428f5ad997331b8812d3e423cf6f9650f

    • SSDEEP

      12288:VAwSfxL/2Dc3vDLLmt0LDQewsHj1+EnjYB26TEFGnFYAcX+mbMoFGQ:2+ewsHj1+2jWEFqy9X+sMoF9

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks