General

  • Target

    fe566f9027ae47c1bc4e5c363d981783_JaffaCakes118

  • Size

    456KB

  • Sample

    240421-d7cy8aaa59

  • MD5

    fe566f9027ae47c1bc4e5c363d981783

  • SHA1

    26e53fdab8b232e9ee8cfe706b954ff8d2f49f5a

  • SHA256

    68843afbd696e80845172672f6e31feb662bc5afd6981fa21438c7910191be01

  • SHA512

    56221b32bda5037093c9d9bc0885e3c8a4384ff66468ee99a4a3c67a955ec25f6ca7b441d987d071abed924afae252f35dadd7f3bbaa489150bdabe0a3de3baa

  • SSDEEP

    12288:ohzOCTtN8miF2RWkFhW6dO3E+2MNF3TKJ1DE+Vx2NMPQ5I:gRTtN8miIRWk+6dOpNF3TYICC

Score
10/10

Malware Config

Targets

    • Target

      fe566f9027ae47c1bc4e5c363d981783_JaffaCakes118

    • Size

      456KB

    • MD5

      fe566f9027ae47c1bc4e5c363d981783

    • SHA1

      26e53fdab8b232e9ee8cfe706b954ff8d2f49f5a

    • SHA256

      68843afbd696e80845172672f6e31feb662bc5afd6981fa21438c7910191be01

    • SHA512

      56221b32bda5037093c9d9bc0885e3c8a4384ff66468ee99a4a3c67a955ec25f6ca7b441d987d071abed924afae252f35dadd7f3bbaa489150bdabe0a3de3baa

    • SSDEEP

      12288:ohzOCTtN8miF2RWkFhW6dO3E+2MNF3TKJ1DE+Vx2NMPQ5I:gRTtN8miIRWk+6dOpNF3TYICC

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks