General

  • Target

    f160b4aaad518b10dfc712bc54c37d11_JaffaCakes118

  • Size

    415KB

  • Sample

    240415-stgsksbh8x

  • MD5

    f160b4aaad518b10dfc712bc54c37d11

  • SHA1

    e3416bde5791c7f1d362c3df517ccd068b44b21a

  • SHA256

    a79113aac9d7c76351a1d74e3d46cdac44146323496b85bb4150ae10f108453e

  • SHA512

    be0fdb8877f19d39a93ea1903149aba7f42c1a67726134b8d7b65670b8b3a19714703e920f160821c5a85d6a7899b1f9af8d1db4e21e674fb6af2a35b48c4c0a

  • SSDEEP

    6144:rT1oMahvpafezhv/Kf26N/tj9vRuVBhmkCTMU7z0pWL72uRTvBaWL:LaOmzhv/c910cnTMiWUR7BRL

Score
10/10

Malware Config

Targets

    • Target

      f160b4aaad518b10dfc712bc54c37d11_JaffaCakes118

    • Size

      415KB

    • MD5

      f160b4aaad518b10dfc712bc54c37d11

    • SHA1

      e3416bde5791c7f1d362c3df517ccd068b44b21a

    • SHA256

      a79113aac9d7c76351a1d74e3d46cdac44146323496b85bb4150ae10f108453e

    • SHA512

      be0fdb8877f19d39a93ea1903149aba7f42c1a67726134b8d7b65670b8b3a19714703e920f160821c5a85d6a7899b1f9af8d1db4e21e674fb6af2a35b48c4c0a

    • SSDEEP

      6144:rT1oMahvpafezhv/Kf26N/tj9vRuVBhmkCTMU7z0pWL72uRTvBaWL:LaOmzhv/c910cnTMiWUR7BRL

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks