General

  • Target

    b6a0c9310a63c3100a652bef67006655_JaffaCakes118

  • Size

    416KB

  • Sample

    240822-gzxkfasekb

  • MD5

    b6a0c9310a63c3100a652bef67006655

  • SHA1

    86e23e438622899f029552b8aa37a12d9155ec8b

  • SHA256

    a4db226ec8ea90dfebe796396d36fb90758084e90735017c71422173cef5deeb

  • SHA512

    296daef81d7405ac5764747201fc8033c1b034ee123a94fe2e13f868c63d4113f7eec64636bde6607695f0a705eaf9984f6008be7336051f4634e909da46c494

  • SSDEEP

    6144:U2Job/1GrjgUdM8UTdx7dMHhj67Yx2D2iNIdLSarxUGQYNb+ZlYo4:U6rjgUSzHuHeSiqLSarxtyZl

Score
10/10

Malware Config

Targets

    • Target

      b6a0c9310a63c3100a652bef67006655_JaffaCakes118

    • Size

      416KB

    • MD5

      b6a0c9310a63c3100a652bef67006655

    • SHA1

      86e23e438622899f029552b8aa37a12d9155ec8b

    • SHA256

      a4db226ec8ea90dfebe796396d36fb90758084e90735017c71422173cef5deeb

    • SHA512

      296daef81d7405ac5764747201fc8033c1b034ee123a94fe2e13f868c63d4113f7eec64636bde6607695f0a705eaf9984f6008be7336051f4634e909da46c494

    • SSDEEP

      6144:U2Job/1GrjgUdM8UTdx7dMHhj67Yx2D2iNIdLSarxUGQYNb+ZlYo4:U6rjgUSzHuHeSiqLSarxtyZl

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks