General

  • Target

    b61c5dfd956a51629d895dfefff28f88_JaffaCakes118

  • Size

    416KB

  • Sample

    240822-dj3jzaygjk

  • MD5

    b61c5dfd956a51629d895dfefff28f88

  • SHA1

    242d80ffe5182c915c1e206480a5bc44ad55dbdd

  • SHA256

    8fdbdddec5f0019aa030b27ac413f89af5f496179cc39db706aa30ee39396290

  • SHA512

    94efbd327921fd2f7f82000aa72a94a7ae96b735f5e990a766599884c4003766b908b66c4e0391c9da67bb074eb369d3aa03e50820569e2a4bb2b4f0d139481a

  • SSDEEP

    6144:/L+p04fSQntQrXO5FpV5p+ZK+5Xuk1Bzx4+YroOVPONwjsPGbbKM4m4:/ip04f5qDiFpV5p+ZJAkzCmO4N+KNl

Score
10/10

Malware Config

Targets

    • Target

      b61c5dfd956a51629d895dfefff28f88_JaffaCakes118

    • Size

      416KB

    • MD5

      b61c5dfd956a51629d895dfefff28f88

    • SHA1

      242d80ffe5182c915c1e206480a5bc44ad55dbdd

    • SHA256

      8fdbdddec5f0019aa030b27ac413f89af5f496179cc39db706aa30ee39396290

    • SHA512

      94efbd327921fd2f7f82000aa72a94a7ae96b735f5e990a766599884c4003766b908b66c4e0391c9da67bb074eb369d3aa03e50820569e2a4bb2b4f0d139481a

    • SSDEEP

      6144:/L+p04fSQntQrXO5FpV5p+ZK+5Xuk1Bzx4+YroOVPONwjsPGbbKM4m4:/ip04f5qDiFpV5p+ZJAkzCmO4N+KNl

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks