General

  • Target

    b62b75bddc3cb46984839792cbb0c90b_JaffaCakes118

  • Size

    7.3MB

  • Sample

    240822-dze4lszdjm

  • MD5

    b62b75bddc3cb46984839792cbb0c90b

  • SHA1

    0ddc611ba9f36530124a7f2fb6f26fa6272b17d5

  • SHA256

    606c98feb696a224deb9aa068f1ae7a82680c84c50011ad2a46f3ef2f9e84dbd

  • SHA512

    2d911b28928aa143121bb2d3f78b3cc412f854dc10bd6345a2a0a8d45d5cd7fb1788fd8902391e2a6882e625f854c027b0a5ac70cacded2236b326a14369e747

  • SSDEEP

    98304:uxC3ud6MOIvysiwCQKzo5qphIHVruP3WpF3UdE1hZHEdLFemil+:hGQFMkhgJuP32+dmhZk/k

Malware Config

Targets

    • Target

      b62b75bddc3cb46984839792cbb0c90b_JaffaCakes118

    • Size

      7.3MB

    • MD5

      b62b75bddc3cb46984839792cbb0c90b

    • SHA1

      0ddc611ba9f36530124a7f2fb6f26fa6272b17d5

    • SHA256

      606c98feb696a224deb9aa068f1ae7a82680c84c50011ad2a46f3ef2f9e84dbd

    • SHA512

      2d911b28928aa143121bb2d3f78b3cc412f854dc10bd6345a2a0a8d45d5cd7fb1788fd8902391e2a6882e625f854c027b0a5ac70cacded2236b326a14369e747

    • SSDEEP

      98304:uxC3ud6MOIvysiwCQKzo5qphIHVruP3WpF3UdE1hZHEdLFemil+:hGQFMkhgJuP32+dmhZk/k

    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Enterprise v15

Tasks