General

  • Target

    c2d6504cc716997dfdfd4754d95cee12_JaffaCakes118

  • Size

    416KB

  • Sample

    240826-mwxc6azard

  • MD5

    c2d6504cc716997dfdfd4754d95cee12

  • SHA1

    91e9619e93f7b6bcf85fd9d72f2b56b9633a8d37

  • SHA256

    5817e8865d9f97f25bac33ac9276b7849a706287de3baa71e400893dcf86da40

  • SHA512

    d383ef38329ff40715da80654a1a3f5854a4e25e90c786c2998d1a9efa3f7a169bff1b430084bfd664be7519c80440643a144bb538a6c066f8d63bbd8ad01800

  • SSDEEP

    12288:lQOTr2zhnMh1qP3RPgWHcc8cB41v0JXf:lsIUXckB418

Score
10/10

Malware Config

Targets

    • Target

      c2d6504cc716997dfdfd4754d95cee12_JaffaCakes118

    • Size

      416KB

    • MD5

      c2d6504cc716997dfdfd4754d95cee12

    • SHA1

      91e9619e93f7b6bcf85fd9d72f2b56b9633a8d37

    • SHA256

      5817e8865d9f97f25bac33ac9276b7849a706287de3baa71e400893dcf86da40

    • SHA512

      d383ef38329ff40715da80654a1a3f5854a4e25e90c786c2998d1a9efa3f7a169bff1b430084bfd664be7519c80440643a144bb538a6c066f8d63bbd8ad01800

    • SSDEEP

      12288:lQOTr2zhnMh1qP3RPgWHcc8cB41v0JXf:lsIUXckB418

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks