General

  • Target

    f9498f5fe8f412424a85ef0fcae54cf7_JaffaCakes118

  • Size

    420KB

  • Sample

    240419-crdedafb4y

  • MD5

    f9498f5fe8f412424a85ef0fcae54cf7

  • SHA1

    b7217a6255bf87b5a6b6462b5fd4b34fb33f6090

  • SHA256

    05467163dda83b19071362d1925ec5eb40daa44590cbfe538803e40af91efdc0

  • SHA512

    e4f3685affd4a5172e06eb48f59b0e1b8c7505734150d6c1585edc5ae4ca16c536e73545cc2c8069563a0d762ee8f80c303c794f77b00272ccfc5e55db0b3bc0

  • SSDEEP

    12288:tiWzzgNU9MdX2q4vx8d9OdLMZeJik0O+rtvBLbxOLTuT6nhJXbf:tdzzgNU2dX2nx8dELM1kmATuunhRb

Score
10/10

Malware Config

Targets

    • Target

      f9498f5fe8f412424a85ef0fcae54cf7_JaffaCakes118

    • Size

      420KB

    • MD5

      f9498f5fe8f412424a85ef0fcae54cf7

    • SHA1

      b7217a6255bf87b5a6b6462b5fd4b34fb33f6090

    • SHA256

      05467163dda83b19071362d1925ec5eb40daa44590cbfe538803e40af91efdc0

    • SHA512

      e4f3685affd4a5172e06eb48f59b0e1b8c7505734150d6c1585edc5ae4ca16c536e73545cc2c8069563a0d762ee8f80c303c794f77b00272ccfc5e55db0b3bc0

    • SSDEEP

      12288:tiWzzgNU9MdX2q4vx8d9OdLMZeJik0O+rtvBLbxOLTuT6nhJXbf:tdzzgNU2dX2nx8dELM1kmATuunhRb

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks