General

  • Target

    94effe1e7d5fcb2ea964b2fb878f5782da6905d82a73333f1151f19e7952f82c

  • Size

    587KB

  • Sample

    240501-s847escf37

  • MD5

    516d941ddb30c341ad109e5cbda68353

  • SHA1

    d11d224026e1bd7a156b25df126fa89b0a72c66d

  • SHA256

    94effe1e7d5fcb2ea964b2fb878f5782da6905d82a73333f1151f19e7952f82c

  • SHA512

    b3f9d284aae9eae2bec1426a2b222c8a4b5c226870ab4e3490d63debec765ed5b10ee3883990b471ae7749200a6e98a992905cfe6129fb2138c61cdcf03ab633

  • SSDEEP

    12288:2LXYg3qL/AtsXPRMfTMsXfpzqmp0Ek2gfj:2m1fRcoMqmClT

Score
10/10

Malware Config

Targets

    • Target

      94effe1e7d5fcb2ea964b2fb878f5782da6905d82a73333f1151f19e7952f82c

    • Size

      587KB

    • MD5

      516d941ddb30c341ad109e5cbda68353

    • SHA1

      d11d224026e1bd7a156b25df126fa89b0a72c66d

    • SHA256

      94effe1e7d5fcb2ea964b2fb878f5782da6905d82a73333f1151f19e7952f82c

    • SHA512

      b3f9d284aae9eae2bec1426a2b222c8a4b5c226870ab4e3490d63debec765ed5b10ee3883990b471ae7749200a6e98a992905cfe6129fb2138c61cdcf03ab633

    • SSDEEP

      12288:2LXYg3qL/AtsXPRMfTMsXfpzqmp0Ek2gfj:2m1fRcoMqmClT

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks