General

  • Target

    0b07ca2c4590cf87024f707415b5a8697c93c7afc28e6723dbabdc07081796ba

  • Size

    1.9MB

  • Sample

    240507-y3jw7agf55

  • MD5

    025d749910cdaa94aef51a57bc2a9c01

  • SHA1

    4978f3068f30c50cd9a621fa5f6953131d10fffa

  • SHA256

    0b07ca2c4590cf87024f707415b5a8697c93c7afc28e6723dbabdc07081796ba

  • SHA512

    4f1f604e0412b797f6748877b441eec53ad2c819054eaf89c0f46ad726c512f7847434be0ea0271f72493e443a569ee488985a0356b740f8aeec9547c66c90d1

  • SSDEEP

    24576:TwyH3igyluYUN0E9g6U5zC2xEvSVI6gwkw9k43WS0IeTJlVk2ezRLvplwC:syH3igNN0E99wLELfw9k43zo+hx

Score
10/10

Malware Config

Targets

    • Target

      0b07ca2c4590cf87024f707415b5a8697c93c7afc28e6723dbabdc07081796ba

    • Size

      1.9MB

    • MD5

      025d749910cdaa94aef51a57bc2a9c01

    • SHA1

      4978f3068f30c50cd9a621fa5f6953131d10fffa

    • SHA256

      0b07ca2c4590cf87024f707415b5a8697c93c7afc28e6723dbabdc07081796ba

    • SHA512

      4f1f604e0412b797f6748877b441eec53ad2c819054eaf89c0f46ad726c512f7847434be0ea0271f72493e443a569ee488985a0356b740f8aeec9547c66c90d1

    • SSDEEP

      24576:TwyH3igyluYUN0E9g6U5zC2xEvSVI6gwkw9k43WS0IeTJlVk2ezRLvplwC:syH3igNN0E99wLELfw9k43zo+hx

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks