General

  • Target

    efe35d095ed18d46208e12480f8d58bc_JaffaCakes118

  • Size

    457KB

  • Sample

    240415-awqjdshg43

  • MD5

    efe35d095ed18d46208e12480f8d58bc

  • SHA1

    d11e37a2410fbaf16dbe9aa9e4177cbeed49444a

  • SHA256

    9c4c311a5905dd7f086b9a87326ef2a494971416a66f67c1bea7e4794ff5ac85

  • SHA512

    3febc533e0e3bf23ae97053504108cfdb7a4c60c07c73ef47a8924422841bb14a5ef8daf5dc2dc12a7a298673f62b06b8237cc96f3a7f4e58f606926c6990ebe

  • SSDEEP

    6144:cZTEOK99kXr0QlI2pR3R3CWa9Pvvcqq+K+aQP+C2qPKqfjbDy3so+J5nQlij:ctZOIq9nc2K5Q2CLrbDy3/+4

Score
10/10

Malware Config

Targets

    • Target

      efe35d095ed18d46208e12480f8d58bc_JaffaCakes118

    • Size

      457KB

    • MD5

      efe35d095ed18d46208e12480f8d58bc

    • SHA1

      d11e37a2410fbaf16dbe9aa9e4177cbeed49444a

    • SHA256

      9c4c311a5905dd7f086b9a87326ef2a494971416a66f67c1bea7e4794ff5ac85

    • SHA512

      3febc533e0e3bf23ae97053504108cfdb7a4c60c07c73ef47a8924422841bb14a5ef8daf5dc2dc12a7a298673f62b06b8237cc96f3a7f4e58f606926c6990ebe

    • SSDEEP

      6144:cZTEOK99kXr0QlI2pR3R3CWa9Pvvcqq+K+aQP+C2qPKqfjbDy3so+J5nQlij:ctZOIq9nc2K5Q2CLrbDy3/+4

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks