General

  • Target

    fecd5b80a2986a9b66744ec5f6d559c3_JaffaCakes118

  • Size

    432KB

  • Sample

    240421-jp16zseh2t

  • MD5

    fecd5b80a2986a9b66744ec5f6d559c3

  • SHA1

    026e9225e870152ac5b6b76e898f0a35cd95943c

  • SHA256

    813b3e1bcd8f1e813f650143b5470b5c8874d56f6aa60d5ec83f23e195956b98

  • SHA512

    597688e7b200ad74d53deb4357e836c9c443895221e4611db4ccfa81bd21012b818865fbeed8952cc28fee83b2c92901ca48587cbb059b0763b03f274899bde6

  • SSDEEP

    12288:HUCmZiCCyjFfQLUwa+OVB61DZ4/Uq0XttMeyS:pCvjFAUB+ODgDZtq0XtM

Score
10/10

Malware Config

Targets

    • Target

      fecd5b80a2986a9b66744ec5f6d559c3_JaffaCakes118

    • Size

      432KB

    • MD5

      fecd5b80a2986a9b66744ec5f6d559c3

    • SHA1

      026e9225e870152ac5b6b76e898f0a35cd95943c

    • SHA256

      813b3e1bcd8f1e813f650143b5470b5c8874d56f6aa60d5ec83f23e195956b98

    • SHA512

      597688e7b200ad74d53deb4357e836c9c443895221e4611db4ccfa81bd21012b818865fbeed8952cc28fee83b2c92901ca48587cbb059b0763b03f274899bde6

    • SSDEEP

      12288:HUCmZiCCyjFfQLUwa+OVB61DZ4/Uq0XttMeyS:pCvjFAUB+ODgDZtq0XtM

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks