General

  • Target

    c101d38f9df42cce5d011f294478dd81_JaffaCakes118

  • Size

    432KB

  • Sample

    240825-sl169asdkl

  • MD5

    c101d38f9df42cce5d011f294478dd81

  • SHA1

    cdd331c24e5ba7da87f377fa07b4281bb5fd6709

  • SHA256

    3a85970713c5b1d27e5867d054d4199b421004d13abd29edb99ebcf1277a95c9

  • SHA512

    5faaa57144821d436e338b20fd61b12147787267254af383715f9a879b1c3bfbe1b8247db6743a3f58732c44adb6cb526ddfbcf8b9983cdf9c56118efca9c7ad

  • SSDEEP

    12288:JUCmZiCAwfXcHnXL1rvI36FkPTdvZ4QTU:zCvfyL1rg36FkBhT

Score
10/10

Malware Config

Targets

    • Target

      c101d38f9df42cce5d011f294478dd81_JaffaCakes118

    • Size

      432KB

    • MD5

      c101d38f9df42cce5d011f294478dd81

    • SHA1

      cdd331c24e5ba7da87f377fa07b4281bb5fd6709

    • SHA256

      3a85970713c5b1d27e5867d054d4199b421004d13abd29edb99ebcf1277a95c9

    • SHA512

      5faaa57144821d436e338b20fd61b12147787267254af383715f9a879b1c3bfbe1b8247db6743a3f58732c44adb6cb526ddfbcf8b9983cdf9c56118efca9c7ad

    • SSDEEP

      12288:JUCmZiCAwfXcHnXL1rvI36FkPTdvZ4QTU:zCvfyL1rg36FkBhT

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks