General

  • Target

    c18e901abd82e474162eaa049fbb81ad_JaffaCakes118

  • Size

    432KB

  • Sample

    240825-zm678awcjr

  • MD5

    c18e901abd82e474162eaa049fbb81ad

  • SHA1

    0ecd8956c2e7a1d009aa28639ec66280c0e742d0

  • SHA256

    eb40f9f9a3bc47b32c76e703853a5efbeb2e8380ea9c4de56d7ac945b0a4ebb5

  • SHA512

    87098b1f03304bd6cbf1a3439d59cedeccfeb440cf0d162cfe59a42f60755912b7315a28ac71bb0f750b28ec91fc3a2a27394f8ef44fdbc771bf42e62f3e465d

  • SSDEEP

    12288:KUCmZiCUV0hlc2dXYwYFmD0/fMGuRqEtlaFw+9uTE:gCkpalImiuRqEmwAuT

Score
10/10

Malware Config

Targets

    • Target

      c18e901abd82e474162eaa049fbb81ad_JaffaCakes118

    • Size

      432KB

    • MD5

      c18e901abd82e474162eaa049fbb81ad

    • SHA1

      0ecd8956c2e7a1d009aa28639ec66280c0e742d0

    • SHA256

      eb40f9f9a3bc47b32c76e703853a5efbeb2e8380ea9c4de56d7ac945b0a4ebb5

    • SHA512

      87098b1f03304bd6cbf1a3439d59cedeccfeb440cf0d162cfe59a42f60755912b7315a28ac71bb0f750b28ec91fc3a2a27394f8ef44fdbc771bf42e62f3e465d

    • SSDEEP

      12288:KUCmZiCUV0hlc2dXYwYFmD0/fMGuRqEtlaFw+9uTE:gCkpalImiuRqEmwAuT

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks