General

  • Target

    f83c4c415562671308c70d2dbb85a789_JaffaCakes118

  • Size

    734KB

  • Sample

    240418-r8zq9shc4x

  • MD5

    f83c4c415562671308c70d2dbb85a789

  • SHA1

    6dbe7d47d18c4e17ffb43a5d9dda4bed99a36671

  • SHA256

    1d8b23bb3246eeb128f5c7ebf5a6733933267ca150bafb74a81b198dedb6eb1f

  • SHA512

    4b4ecad3c570e16662075145bef9e50fe66ec4cb7c01db67f5828e573f8d7439cd0b67f6af259c0a519c0d53df95ca9020eba23357a1c655463f179759dd34dc

  • SSDEEP

    12288:JAwSfxL/2Dc3oDLLmt0LDQewsHjGwdoc4Zl40pGq+vMZziV17kRiap:6ZewsHjOZl40pGq/ziD8

Score
10/10

Malware Config

Targets

    • Target

      f83c4c415562671308c70d2dbb85a789_JaffaCakes118

    • Size

      734KB

    • MD5

      f83c4c415562671308c70d2dbb85a789

    • SHA1

      6dbe7d47d18c4e17ffb43a5d9dda4bed99a36671

    • SHA256

      1d8b23bb3246eeb128f5c7ebf5a6733933267ca150bafb74a81b198dedb6eb1f

    • SHA512

      4b4ecad3c570e16662075145bef9e50fe66ec4cb7c01db67f5828e573f8d7439cd0b67f6af259c0a519c0d53df95ca9020eba23357a1c655463f179759dd34dc

    • SSDEEP

      12288:JAwSfxL/2Dc3oDLLmt0LDQewsHjGwdoc4Zl40pGq+vMZziV17kRiap:6ZewsHjOZl40pGq/ziD8

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks