General

  • Target

    c587d11d0423a4773a652ac0f638fb07_JaffaCakes118

  • Size

    416KB

  • Sample

    240827-xjazhawckg

  • MD5

    c587d11d0423a4773a652ac0f638fb07

  • SHA1

    f7879c1545a4d2d7eae1ef71aef2284de0f26a26

  • SHA256

    9d7855acc05e4bf5bd79744679cc930e6ba1256418da24c2f137272e8949f688

  • SHA512

    49baf366b44f3ed64ab0ebaec0a1d65003b84cc2000857bbb72be18ee39b0d5729bbbfd4c7603f213646d3c55de137e22f44d04330e39be2c2ced867f912e31c

  • SSDEEP

    6144:FZ18jkJgh+/Fil7zLY00lpysla4+oybZU+g22zlcUfn/uTHqVex84NuGCkSJI9J:FYogsFC0lgslVblDzlcUux8crCcJ

Score
10/10

Malware Config

Targets

    • Target

      c587d11d0423a4773a652ac0f638fb07_JaffaCakes118

    • Size

      416KB

    • MD5

      c587d11d0423a4773a652ac0f638fb07

    • SHA1

      f7879c1545a4d2d7eae1ef71aef2284de0f26a26

    • SHA256

      9d7855acc05e4bf5bd79744679cc930e6ba1256418da24c2f137272e8949f688

    • SHA512

      49baf366b44f3ed64ab0ebaec0a1d65003b84cc2000857bbb72be18ee39b0d5729bbbfd4c7603f213646d3c55de137e22f44d04330e39be2c2ced867f912e31c

    • SSDEEP

      6144:FZ18jkJgh+/Fil7zLY00lpysla4+oybZU+g22zlcUfn/uTHqVex84NuGCkSJI9J:FYogsFC0lgslVblDzlcUux8crCcJ

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks