General

  • Target

    fda8d6617d7b558b5fa0f0cb1cb6ac02_JaffaCakes118

  • Size

    437KB

  • Sample

    240420-z2yvdsaa63

  • MD5

    fda8d6617d7b558b5fa0f0cb1cb6ac02

  • SHA1

    7730e46d5cd9e534292a575bc4d16b62df082214

  • SHA256

    ec00a5677ae967be3162c2246a12b126a8c106305af04f280cf13ecd5717a30e

  • SHA512

    9b8296837e602c111c9200872507ce17790ea004b89a57d47b041774cc5fa86a8d75b0e987380f1e42883367907e9846173f6ad36a7585b1ddb89df988564ee9

  • SSDEEP

    6144:UfVwm2i+mKaN68U8Wdvym8fXZkE/L07IkX/c6MVO4zXUdn1NwBLDmFBF3UN:Jri+m/A4Wx3U5/LzARMVO4sNyDm3F3U

Score
10/10

Malware Config

Targets

    • Target

      fda8d6617d7b558b5fa0f0cb1cb6ac02_JaffaCakes118

    • Size

      437KB

    • MD5

      fda8d6617d7b558b5fa0f0cb1cb6ac02

    • SHA1

      7730e46d5cd9e534292a575bc4d16b62df082214

    • SHA256

      ec00a5677ae967be3162c2246a12b126a8c106305af04f280cf13ecd5717a30e

    • SHA512

      9b8296837e602c111c9200872507ce17790ea004b89a57d47b041774cc5fa86a8d75b0e987380f1e42883367907e9846173f6ad36a7585b1ddb89df988564ee9

    • SSDEEP

      6144:UfVwm2i+mKaN68U8Wdvym8fXZkE/L07IkX/c6MVO4zXUdn1NwBLDmFBF3UN:Jri+m/A4Wx3U5/LzARMVO4sNyDm3F3U

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks