General

  • Target

    f58bb4eef7f265e5df8fb1006056ac49_JaffaCakes118

  • Size

    417KB

  • Sample

    240417-mcvp8ade31

  • MD5

    f58bb4eef7f265e5df8fb1006056ac49

  • SHA1

    214641f2aa88d64b191b7bd3cb8275c7651554c6

  • SHA256

    f6b32eb66bef73fd5654269f549f41b3114e52b2713bc0b749036e7bfae90c47

  • SHA512

    585d00e549b42c630af38143ce6914221cc5649f6adc58eff9bd1d9fc9cad5eaac0002570b741a9dbecb8642d04920435dd73aadeffcac1faca9a5937b4f4fc6

  • SSDEEP

    6144:vSpwTEOzPSK5U2SoJ8VWackcV1ZmXRWLgKocUq8nOfaIROo71YvK09lw+45B:6+IK5U2SoysXmwLQcUqgsPBYv745B

Score
10/10

Malware Config

Targets

    • Target

      f58bb4eef7f265e5df8fb1006056ac49_JaffaCakes118

    • Size

      417KB

    • MD5

      f58bb4eef7f265e5df8fb1006056ac49

    • SHA1

      214641f2aa88d64b191b7bd3cb8275c7651554c6

    • SHA256

      f6b32eb66bef73fd5654269f549f41b3114e52b2713bc0b749036e7bfae90c47

    • SHA512

      585d00e549b42c630af38143ce6914221cc5649f6adc58eff9bd1d9fc9cad5eaac0002570b741a9dbecb8642d04920435dd73aadeffcac1faca9a5937b4f4fc6

    • SSDEEP

      6144:vSpwTEOzPSK5U2SoJ8VWackcV1ZmXRWLgKocUq8nOfaIROo71YvK09lw+45B:6+IK5U2SoysXmwLQcUqgsPBYv745B

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks