General

  • Target

    f1713cf3fa008ef8fbff6237f1338e9d_JaffaCakes118

  • Size

    420KB

  • Sample

    240415-tfjkpaad57

  • MD5

    f1713cf3fa008ef8fbff6237f1338e9d

  • SHA1

    bc50e9d821b72d8abd7d4b8ec0385abd02b2638c

  • SHA256

    185ff8acc096e41c8e637e609092dbb731dac1d39562e556e90608c502e5c76a

  • SHA512

    f0e1964e724f1be9db6785fdcb55a28bf9fb644c1c5b4f5d1fc748a802f4218aaa920861a78ebcdae68a7e823ac5992a1a5fd0d691441096c710d4d96e0786df

  • SSDEEP

    12288:we7FFM5S80tsqc52WegC3OhafiYrcnUcM8:wkFFME80ti524AVzrE/M

Score
10/10

Malware Config

Targets

    • Target

      f1713cf3fa008ef8fbff6237f1338e9d_JaffaCakes118

    • Size

      420KB

    • MD5

      f1713cf3fa008ef8fbff6237f1338e9d

    • SHA1

      bc50e9d821b72d8abd7d4b8ec0385abd02b2638c

    • SHA256

      185ff8acc096e41c8e637e609092dbb731dac1d39562e556e90608c502e5c76a

    • SHA512

      f0e1964e724f1be9db6785fdcb55a28bf9fb644c1c5b4f5d1fc748a802f4218aaa920861a78ebcdae68a7e823ac5992a1a5fd0d691441096c710d4d96e0786df

    • SSDEEP

      12288:we7FFM5S80tsqc52WegC3OhafiYrcnUcM8:wkFFME80ti524AVzrE/M

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks