General

  • Target

    f27419eca8c22d2aa136988aea4f98b9_JaffaCakes118

  • Size

    432KB

  • Sample

    240416-cnkdhsgg6w

  • MD5

    f27419eca8c22d2aa136988aea4f98b9

  • SHA1

    faba260f49dcf9f2f500cbbbe304d99aab099e3c

  • SHA256

    97d316f8da4c487abed69e3b0ec6982b5450769f94419479127884c2fa9a9179

  • SHA512

    0c384203d51c3e0eac9edcee3390f7529bc48f4e1bc2726eb27def9debe8505f7ad39625b0b97b3f6a45c54f1d31651780989d3cb94088d4aed5fed81cdf137c

  • SSDEEP

    6144:XFUCmZqoFWC6xAQmVjAfdxJHTb91zuKGGr4QYzEvL9QhPk2oq5ewyzsHOgN:1UCmZiCLeHdGGUxQvxgn5ewyzP

Score
10/10

Malware Config

Targets

    • Target

      f27419eca8c22d2aa136988aea4f98b9_JaffaCakes118

    • Size

      432KB

    • MD5

      f27419eca8c22d2aa136988aea4f98b9

    • SHA1

      faba260f49dcf9f2f500cbbbe304d99aab099e3c

    • SHA256

      97d316f8da4c487abed69e3b0ec6982b5450769f94419479127884c2fa9a9179

    • SHA512

      0c384203d51c3e0eac9edcee3390f7529bc48f4e1bc2726eb27def9debe8505f7ad39625b0b97b3f6a45c54f1d31651780989d3cb94088d4aed5fed81cdf137c

    • SSDEEP

      6144:XFUCmZqoFWC6xAQmVjAfdxJHTb91zuKGGr4QYzEvL9QhPk2oq5ewyzsHOgN:1UCmZiCLeHdGGUxQvxgn5ewyzP

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks