General

  • Target

    cdada5ac69761b57c56c904f1c6aa836_JaffaCakes118

  • Size

    432KB

  • Sample

    240831-1yah3axgqc

  • MD5

    cdada5ac69761b57c56c904f1c6aa836

  • SHA1

    ef9f1aef1224a39a340cb492c1bea4f9ec6de261

  • SHA256

    c24520b22625a47a50cbc17077bd3874bffdf0d4be0f393df35a09695bfab46e

  • SHA512

    d1bcfbbdb7a80370890bf00acc8009ed593d8528084ac85f91ec63c5c62e9fd0b6158ea4ef1d0b35129cb80bf89bcd2f3c984136d771f28664de97ef51b255f1

  • SSDEEP

    6144:rFUCmZqoFWC6xUbjOCAhjzhNykDK+5Xuk1Bzx4+YroOVPONwjsPGbbKM4m4:hUCmZiCC9NycJAkzCmO4N+KNl

Score
10/10

Malware Config

Targets

    • Target

      cdada5ac69761b57c56c904f1c6aa836_JaffaCakes118

    • Size

      432KB

    • MD5

      cdada5ac69761b57c56c904f1c6aa836

    • SHA1

      ef9f1aef1224a39a340cb492c1bea4f9ec6de261

    • SHA256

      c24520b22625a47a50cbc17077bd3874bffdf0d4be0f393df35a09695bfab46e

    • SHA512

      d1bcfbbdb7a80370890bf00acc8009ed593d8528084ac85f91ec63c5c62e9fd0b6158ea4ef1d0b35129cb80bf89bcd2f3c984136d771f28664de97ef51b255f1

    • SSDEEP

      6144:rFUCmZqoFWC6xUbjOCAhjzhNykDK+5Xuk1Bzx4+YroOVPONwjsPGbbKM4m4:hUCmZiCC9NycJAkzCmO4N+KNl

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks