General

  • Target

    ecec8023f18a464c2190c3ae00a63a30_JaffaCakes118

  • Size

    402KB

  • Sample

    240411-jn1ttsfa83

  • MD5

    ecec8023f18a464c2190c3ae00a63a30

  • SHA1

    cd8ae8fd15ba1f739271e290bf46c8857b952986

  • SHA256

    96bb950fc0d8f6c356b764ce7172b43ff32533d14a75dbca747166482fc0f9f6

  • SHA512

    37b8974e9009fc5937bb1ccbaa51e07eb4eba2b4a60b4e4b790d668b086fb8b6e8a72f413d3d33d3922f5fabb46090bb1e369ccd05881b39d6c7cdac94fe567a

  • SSDEEP

    6144:5Jb4WHEZCnjxT0ysj/1VQOMRswYAvq88Jv5hUwCyqz5DBA0kpw7F1f6iizM:5mYjJo1VAbYACFv3U3/z5kpwT6iiz

Score
10/10

Malware Config

Targets

    • Target

      ecec8023f18a464c2190c3ae00a63a30_JaffaCakes118

    • Size

      402KB

    • MD5

      ecec8023f18a464c2190c3ae00a63a30

    • SHA1

      cd8ae8fd15ba1f739271e290bf46c8857b952986

    • SHA256

      96bb950fc0d8f6c356b764ce7172b43ff32533d14a75dbca747166482fc0f9f6

    • SHA512

      37b8974e9009fc5937bb1ccbaa51e07eb4eba2b4a60b4e4b790d668b086fb8b6e8a72f413d3d33d3922f5fabb46090bb1e369ccd05881b39d6c7cdac94fe567a

    • SSDEEP

      6144:5Jb4WHEZCnjxT0ysj/1VQOMRswYAvq88Jv5hUwCyqz5DBA0kpw7F1f6iizM:5mYjJo1VAbYACFv3U3/z5kpwT6iiz

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks