General

  • Target

    fa290add0c564f10cdbecdb76ed28ca4_JaffaCakes118

  • Size

    432KB

  • Sample

    240419-m552naaa39

  • MD5

    fa290add0c564f10cdbecdb76ed28ca4

  • SHA1

    4e68082ab090295cbec54aa860fec6d163e4ca25

  • SHA256

    d35ec32e6c20c3ecf858d2222305c27f78b04a21d9c8373616ae81e91659019d

  • SHA512

    405b236197ae59da4c09822927e6630e126fec17f110670347193ac0b8e78ad4d8845a898584aafb5ae4641feda29a6e1a77b391a7ab8b2df0139e13dfbdc8ff

  • SSDEEP

    12288:CUCmZiCyhIgM56N1urRfKj7Igk7TKU5nnqm:oCk53ur5KAHTKsnn9

Score
10/10

Malware Config

Targets

    • Target

      fa290add0c564f10cdbecdb76ed28ca4_JaffaCakes118

    • Size

      432KB

    • MD5

      fa290add0c564f10cdbecdb76ed28ca4

    • SHA1

      4e68082ab090295cbec54aa860fec6d163e4ca25

    • SHA256

      d35ec32e6c20c3ecf858d2222305c27f78b04a21d9c8373616ae81e91659019d

    • SHA512

      405b236197ae59da4c09822927e6630e126fec17f110670347193ac0b8e78ad4d8845a898584aafb5ae4641feda29a6e1a77b391a7ab8b2df0139e13dfbdc8ff

    • SSDEEP

      12288:CUCmZiCyhIgM56N1urRfKj7Igk7TKU5nnqm:oCk53ur5KAHTKsnn9

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks