General

  • Target

    fe732cb9c5b8a09ffe8a0a8863ba9229_JaffaCakes118

  • Size

    460KB

  • Sample

    240421-e8ysrabd45

  • MD5

    fe732cb9c5b8a09ffe8a0a8863ba9229

  • SHA1

    8834bcc7605a6ae7b8a69f188e9f0f25085730cf

  • SHA256

    36cb34e26489965e9340e20ebf6b22edf283c98715a2d7d68c78a84cf83bb4d1

  • SHA512

    4aef9a3050a01d7c4e0bc9a5abef82dcae1f7576fff1c8daff3f6e4c4cba7278ec9f4263c0dbb5ac989ea2743b84fc244fb94d1f350dc8ab6db80e4adb303e98

  • SSDEEP

    6144:vZlEOK99kXoDa8QgUBYibBbElatbulq4I0ZxA9XxAgsBhSRsuR3tWJHb/:v7oa8iYiQaOZx8Xx2kRvtWJ7/

Score
10/10

Malware Config

Targets

    • Target

      fe732cb9c5b8a09ffe8a0a8863ba9229_JaffaCakes118

    • Size

      460KB

    • MD5

      fe732cb9c5b8a09ffe8a0a8863ba9229

    • SHA1

      8834bcc7605a6ae7b8a69f188e9f0f25085730cf

    • SHA256

      36cb34e26489965e9340e20ebf6b22edf283c98715a2d7d68c78a84cf83bb4d1

    • SHA512

      4aef9a3050a01d7c4e0bc9a5abef82dcae1f7576fff1c8daff3f6e4c4cba7278ec9f4263c0dbb5ac989ea2743b84fc244fb94d1f350dc8ab6db80e4adb303e98

    • SSDEEP

      6144:vZlEOK99kXoDa8QgUBYibBbElatbulq4I0ZxA9XxAgsBhSRsuR3tWJHb/:v7oa8iYiQaOZx8Xx2kRvtWJ7/

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks