General

  • Target

    fada9d9d2f1af181a5926161e78bfd07_JaffaCakes118

  • Size

    476KB

  • Sample

    240419-whreesbc49

  • MD5

    fada9d9d2f1af181a5926161e78bfd07

  • SHA1

    2a74f7fae1e4d8a0694986ca8420e95a897f0fca

  • SHA256

    135b116e2fe35c5e11f93380d0342332585e43126cb8b221503a1e434babd19f

  • SHA512

    0a23bf814ebb099d4c71aa2923abae7b1dc11e89f3a6c63c402b3f8795a4dda9f07a1df1ee089cec929d6e3204d96fdb5b69d51e3077431fc68fb46072340148

  • SSDEEP

    12288:pYmIjE7luwGIvI24B5rUOHyaQC7erBHPn:j7AFB5fHyuir

Score
10/10

Malware Config

Targets

    • Target

      fada9d9d2f1af181a5926161e78bfd07_JaffaCakes118

    • Size

      476KB

    • MD5

      fada9d9d2f1af181a5926161e78bfd07

    • SHA1

      2a74f7fae1e4d8a0694986ca8420e95a897f0fca

    • SHA256

      135b116e2fe35c5e11f93380d0342332585e43126cb8b221503a1e434babd19f

    • SHA512

      0a23bf814ebb099d4c71aa2923abae7b1dc11e89f3a6c63c402b3f8795a4dda9f07a1df1ee089cec929d6e3204d96fdb5b69d51e3077431fc68fb46072340148

    • SSDEEP

      12288:pYmIjE7luwGIvI24B5rUOHyaQC7erBHPn:j7AFB5fHyuir

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks