General

  • Target

    f6f987928e38e74a1dfa733019e85c8b_JaffaCakes118

  • Size

    7.3MB

  • Sample

    240418-bk2mysga7v

  • MD5

    f6f987928e38e74a1dfa733019e85c8b

  • SHA1

    a6cd15a42993a5301359207a63efa4c1233dc0a6

  • SHA256

    e368f3b96ed67a1a62d390f74f62d6158e22539dcc4a2c2b16f48f71980b38bf

  • SHA512

    ee2e5126439b6331eefdccbdcbd7d7f9bcfccf2ab8ae2f983ac156f1ef1730a417af097863085fb1f7ddaee9232983c5e16a223f9e731cfca9b4e2959ad161d4

  • SSDEEP

    98304:xxC3ud6MOIvysi7CQKzo5qphIHVruP3WpF3UdE1hZHEdLF00a:mGQgMkhgJuP32+dmhZk/0p

Score
10/10

Malware Config

Targets

    • Target

      f6f987928e38e74a1dfa733019e85c8b_JaffaCakes118

    • Size

      7.3MB

    • MD5

      f6f987928e38e74a1dfa733019e85c8b

    • SHA1

      a6cd15a42993a5301359207a63efa4c1233dc0a6

    • SHA256

      e368f3b96ed67a1a62d390f74f62d6158e22539dcc4a2c2b16f48f71980b38bf

    • SHA512

      ee2e5126439b6331eefdccbdcbd7d7f9bcfccf2ab8ae2f983ac156f1ef1730a417af097863085fb1f7ddaee9232983c5e16a223f9e731cfca9b4e2959ad161d4

    • SSDEEP

      98304:xxC3ud6MOIvysi7CQKzo5qphIHVruP3WpF3UdE1hZHEdLF00a:mGQgMkhgJuP32+dmhZk/0p

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks