General

  • Target

    4128a2c38274b667e813b53488c33112d587f53a0c358832cf39f1fdd7dfc0a2

  • Size

    843KB

  • Sample

    240525-zqmb8aab3v

  • MD5

    4f0413d42f287270b5280acc2bc1cbb4

  • SHA1

    e3c4d2909c44c054895244d35b498b7937b95baa

  • SHA256

    4128a2c38274b667e813b53488c33112d587f53a0c358832cf39f1fdd7dfc0a2

  • SHA512

    0bb2115019b3e7a520fa11f9a2d88386e4ccc5cba2d22b419d8c82ac1b17a349245563cede0323a99de8ff628128a88d1ca8e1d869b30a98557fa4267f8dea80

  • SSDEEP

    12288:C5NaIk7nsp5pahQ2hkhsYvCpJZ2u4TsgmuWW/PhtaVbm02kK6DAO1SHM:C5lB2hkhfvCpf2fTfWWRSLpAO1Ss

Score
10/10

Malware Config

Targets

    • Target

      4128a2c38274b667e813b53488c33112d587f53a0c358832cf39f1fdd7dfc0a2

    • Size

      843KB

    • MD5

      4f0413d42f287270b5280acc2bc1cbb4

    • SHA1

      e3c4d2909c44c054895244d35b498b7937b95baa

    • SHA256

      4128a2c38274b667e813b53488c33112d587f53a0c358832cf39f1fdd7dfc0a2

    • SHA512

      0bb2115019b3e7a520fa11f9a2d88386e4ccc5cba2d22b419d8c82ac1b17a349245563cede0323a99de8ff628128a88d1ca8e1d869b30a98557fa4267f8dea80

    • SSDEEP

      12288:C5NaIk7nsp5pahQ2hkhsYvCpJZ2u4TsgmuWW/PhtaVbm02kK6DAO1SHM:C5lB2hkhfvCpf2fTfWWRSLpAO1Ss

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks