General

  • Target

    ff7b301cd50701021ba0026692ef7583_JaffaCakes118

  • Size

    419KB

  • Sample

    240421-rqx5qadf31

  • MD5

    ff7b301cd50701021ba0026692ef7583

  • SHA1

    01e2243e42bd307645305519dfad50447a886108

  • SHA256

    6cc09131ca77b0a9fb30fb2e7e422dd933e2ae63e740b145acedf95a3bc04432

  • SHA512

    47a686ee44017e7409bad3740845f2e2f3094eb2b0b372c5c5643f367c405b2d4a7b26f2b079e3861f9fd9f1da1bd66f47aac61ab1bf5fcc54eb2c3881046107

  • SSDEEP

    6144:ddNUiQGcSTWwe5jbeUQ7PIiIM+CmM1KnyJtkBgC939l7cUSyw/xqfvZrZnTs2rww:fNlcae5aPIir3sstWgC939lAUOiZrJA

Score
10/10

Malware Config

Targets

    • Target

      ff7b301cd50701021ba0026692ef7583_JaffaCakes118

    • Size

      419KB

    • MD5

      ff7b301cd50701021ba0026692ef7583

    • SHA1

      01e2243e42bd307645305519dfad50447a886108

    • SHA256

      6cc09131ca77b0a9fb30fb2e7e422dd933e2ae63e740b145acedf95a3bc04432

    • SHA512

      47a686ee44017e7409bad3740845f2e2f3094eb2b0b372c5c5643f367c405b2d4a7b26f2b079e3861f9fd9f1da1bd66f47aac61ab1bf5fcc54eb2c3881046107

    • SSDEEP

      6144:ddNUiQGcSTWwe5jbeUQ7PIiIM+CmM1KnyJtkBgC939l7cUSyw/xqfvZrZnTs2rww:fNlcae5aPIir3sstWgC939lAUOiZrJA

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks