General

  • Target

    e9614ee76e47c988cfea9b353b8e5652_JaffaCakes118

  • Size

    432KB

  • Sample

    240409-gm6mksgc26

  • MD5

    e9614ee76e47c988cfea9b353b8e5652

  • SHA1

    11c37c169b6fede8fb8e2b691420d7821ff8ce5b

  • SHA256

    4a928aa5de203db8dfe4d7e1bd349b25e38fd939f41ece3eb5389d04a5e7380b

  • SHA512

    b2ad5462d588d2570ce528b576786ff1836cbe987e8a5b5a18e12fb1cee0d7e7711ce6d5119951473c2b3ab1676f7d8d6776bc9f6fcd59ca16b0e832f0e6d0a2

  • SSDEEP

    12288:6UCmZiCOOGmLwpeSwEtsjfpi7FHllbImzPxmH:wCLeecdP8H

Score
10/10

Malware Config

Targets

    • Target

      e9614ee76e47c988cfea9b353b8e5652_JaffaCakes118

    • Size

      432KB

    • MD5

      e9614ee76e47c988cfea9b353b8e5652

    • SHA1

      11c37c169b6fede8fb8e2b691420d7821ff8ce5b

    • SHA256

      4a928aa5de203db8dfe4d7e1bd349b25e38fd939f41ece3eb5389d04a5e7380b

    • SHA512

      b2ad5462d588d2570ce528b576786ff1836cbe987e8a5b5a18e12fb1cee0d7e7711ce6d5119951473c2b3ab1676f7d8d6776bc9f6fcd59ca16b0e832f0e6d0a2

    • SSDEEP

      12288:6UCmZiCOOGmLwpeSwEtsjfpi7FHllbImzPxmH:wCLeecdP8H

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks