General

  • Target

    eaaeb571a7212f3e5470f6655f774f70_JaffaCakes118

  • Size

    539KB

  • Sample

    240410-km65wshg43

  • MD5

    eaaeb571a7212f3e5470f6655f774f70

  • SHA1

    e29a7adb2ca1667c24a72ff431d6042cd9817400

  • SHA256

    8ba7cdb3043b64bd8f25c88ea741fb4f5f35602d06f6e57eafde06150cccf3b9

  • SHA512

    9f69d50279ff5567203943fecfdbb122a28e3907467a5bad7aa72775895464394f29ba5f2fcc5f09e8d6e227344fe7fa53d10403bb0cb2db7cf25ab0100c90cc

  • SSDEEP

    12288:1bbi9I6oe4FEy2hs6lhura36OLVPEe4h1dVFKCRTtt:iI3HEy2y62uFhb47dvK2t

Score
10/10

Malware Config

Targets

    • Target

      eaaeb571a7212f3e5470f6655f774f70_JaffaCakes118

    • Size

      539KB

    • MD5

      eaaeb571a7212f3e5470f6655f774f70

    • SHA1

      e29a7adb2ca1667c24a72ff431d6042cd9817400

    • SHA256

      8ba7cdb3043b64bd8f25c88ea741fb4f5f35602d06f6e57eafde06150cccf3b9

    • SHA512

      9f69d50279ff5567203943fecfdbb122a28e3907467a5bad7aa72775895464394f29ba5f2fcc5f09e8d6e227344fe7fa53d10403bb0cb2db7cf25ab0100c90cc

    • SSDEEP

      12288:1bbi9I6oe4FEy2hs6lhura36OLVPEe4h1dVFKCRTtt:iI3HEy2y62uFhb47dvK2t

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks