General

  • Target

    2024-05-22_fefeace5dee0ae46568975bb2a6f7c9f_mafia

  • Size

    501KB

  • Sample

    240522-j1rrpahc5t

  • MD5

    fefeace5dee0ae46568975bb2a6f7c9f

  • SHA1

    eb82ed138ba38f474e2f682be8b833fe08ff1aa9

  • SHA256

    63157e85cafeb73004f756fe7d0a9e6244fb24fe6a7dd25fc0f3c77254284ec9

  • SHA512

    e766d1595ef107335b71d0d90dde751ffb8c22ca22c1339ffc91a466c99b6cb0d6228554388374d85a0976973984086a4a2bdd4ae30cac51b7a703f3111ec79f

  • SSDEEP

    6144:WCxwLLHtVVNrNekVXaD3BcwYAWYOuC1KjvQivXqa3/f5oGPENBU60D4APWLsb:Wqw/HtjZNtaD3TNW1K7VfPsNFAN

Score
10/10

Malware Config

Targets

    • Target

      2024-05-22_fefeace5dee0ae46568975bb2a6f7c9f_mafia

    • Size

      501KB

    • MD5

      fefeace5dee0ae46568975bb2a6f7c9f

    • SHA1

      eb82ed138ba38f474e2f682be8b833fe08ff1aa9

    • SHA256

      63157e85cafeb73004f756fe7d0a9e6244fb24fe6a7dd25fc0f3c77254284ec9

    • SHA512

      e766d1595ef107335b71d0d90dde751ffb8c22ca22c1339ffc91a466c99b6cb0d6228554388374d85a0976973984086a4a2bdd4ae30cac51b7a703f3111ec79f

    • SSDEEP

      6144:WCxwLLHtVVNrNekVXaD3BcwYAWYOuC1KjvQivXqa3/f5oGPENBU60D4APWLsb:Wqw/HtjZNtaD3TNW1K7VfPsNFAN

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks