General

  • Target

    f6b5db9a551a3d0b5324f1c13b111e5f_JaffaCakes118

  • Size

    415KB

  • Sample

    240417-2ebsfsgc23

  • MD5

    f6b5db9a551a3d0b5324f1c13b111e5f

  • SHA1

    cfcd537a75ddb73deaf213b4d0b7a49df2ce83af

  • SHA256

    c65ef76afe470ee6374c040d3f071d3300e44bef5e0482aad151fe112a94ed02

  • SHA512

    d51b0c9deba0c972f46d059ad75d040eafaee22f418c8efb38b5a60a16cbaa174d2518e20257e2048867b8541d32433ad6016fa901fb0df30d6b2ae82e677302

  • SSDEEP

    12288:Mr0yKsiwOby+2ksy6cNccOerid8Z198x:Mr0yKsiwQe2ccOerWK

Score
10/10

Malware Config

Targets

    • Target

      f6b5db9a551a3d0b5324f1c13b111e5f_JaffaCakes118

    • Size

      415KB

    • MD5

      f6b5db9a551a3d0b5324f1c13b111e5f

    • SHA1

      cfcd537a75ddb73deaf213b4d0b7a49df2ce83af

    • SHA256

      c65ef76afe470ee6374c040d3f071d3300e44bef5e0482aad151fe112a94ed02

    • SHA512

      d51b0c9deba0c972f46d059ad75d040eafaee22f418c8efb38b5a60a16cbaa174d2518e20257e2048867b8541d32433ad6016fa901fb0df30d6b2ae82e677302

    • SSDEEP

      12288:Mr0yKsiwOby+2ksy6cNccOerid8Z198x:Mr0yKsiwQe2ccOerWK

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks