General

  • Target

    f416871f57f67c1356f930acd0d8617f_JaffaCakes118

  • Size

    7.3MB

  • Sample

    240416-xa4kfshe76

  • MD5

    f416871f57f67c1356f930acd0d8617f

  • SHA1

    c4e42aee6069c4a55dc52e6c4e3d3f6249edd6d4

  • SHA256

    94cd30d1ed5158118ca5a2e9ddf6c5478f29c602cd0249faa21e5676ba5159ae

  • SHA512

    a0ff7aead2472368e0f6eac02a4dcbf98fef572fa4bf2b830c05eadd2b2ddfa32d9ff2afc30fb7e6a1fb07b5b73dd345f7fab3a863dab1e74f3b4347ab8114d1

  • SSDEEP

    98304:ExC3ud6MOIvysiwCQKzo5qphIHVruP3WpF3UdE1hZHEdLFemil+:vGQFMkhgJuP32+dmhZk/k

Score
10/10

Malware Config

Targets

    • Target

      f416871f57f67c1356f930acd0d8617f_JaffaCakes118

    • Size

      7.3MB

    • MD5

      f416871f57f67c1356f930acd0d8617f

    • SHA1

      c4e42aee6069c4a55dc52e6c4e3d3f6249edd6d4

    • SHA256

      94cd30d1ed5158118ca5a2e9ddf6c5478f29c602cd0249faa21e5676ba5159ae

    • SHA512

      a0ff7aead2472368e0f6eac02a4dcbf98fef572fa4bf2b830c05eadd2b2ddfa32d9ff2afc30fb7e6a1fb07b5b73dd345f7fab3a863dab1e74f3b4347ab8114d1

    • SSDEEP

      98304:ExC3ud6MOIvysiwCQKzo5qphIHVruP3WpF3UdE1hZHEdLFemil+:vGQFMkhgJuP32+dmhZk/k

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks