General

  • Target

    e71063b4f3af78a40895ce90fbee4b3f_JaffaCakes118

  • Size

    402KB

  • Sample

    240408-kk4xragd8w

  • MD5

    e71063b4f3af78a40895ce90fbee4b3f

  • SHA1

    44d50cab46f153d6a26583269fb0c3905fd260f5

  • SHA256

    8db82a9193595f88c55983b97d1a54ac7ef21da5cd5c53dbd25e6a8fcfdee2d1

  • SHA512

    7b6f0eca4ed10873b4547b74d68e53980edc7c142631be9b9ca82cb7bad5d89e660416f85e2202b1d6e656a86c1bb669949bf100f37094d42e2e1c191f605980

  • SSDEEP

    6144:FkHKjM58YSArRIaJdObzNdlvsafNutbf/E1GtWeYeIN1dcoCQnL+nTWrf5ZS:FEKjM589cIaebrMyGma4L+nQT

Score
10/10

Malware Config

Targets

    • Target

      e71063b4f3af78a40895ce90fbee4b3f_JaffaCakes118

    • Size

      402KB

    • MD5

      e71063b4f3af78a40895ce90fbee4b3f

    • SHA1

      44d50cab46f153d6a26583269fb0c3905fd260f5

    • SHA256

      8db82a9193595f88c55983b97d1a54ac7ef21da5cd5c53dbd25e6a8fcfdee2d1

    • SHA512

      7b6f0eca4ed10873b4547b74d68e53980edc7c142631be9b9ca82cb7bad5d89e660416f85e2202b1d6e656a86c1bb669949bf100f37094d42e2e1c191f605980

    • SSDEEP

      6144:FkHKjM58YSArRIaJdObzNdlvsafNutbf/E1GtWeYeIN1dcoCQnL+nTWrf5ZS:FEKjM589cIaebrMyGma4L+nQT

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks