General

  • Target

    8dcf664354030881725bcb5abbccac5b.zip

  • Size

    300KB

  • Sample

    240831-d54ddstenr

  • MD5

    40ab16ca67e1bfad08ecd911c17e800a

  • SHA1

    1da491a9854f7416d253de3507b2f8993b9ae54a

  • SHA256

    6dab238f271e7e393cd9467891a935d714270d91100477123cdb253784474d80

  • SHA512

    4b89d9ec4c736431dca90094c4f4beff40539bf4bee81594bb6073b0202b08f2681a7839bf75b8913b6b3fa3565bcdc3bb895f48435a46424d76d1db1c91a06f

  • SSDEEP

    6144:Q6KQAIp77ScFXDCDZl7nKWOqJALJ8zNwo9QVE:JAg7ScFXDCDvjeqALGNwo9QS

Score
10/10

Malware Config

Targets

    • Target

      2b9f6c43af9b8fd9e6186a9218b19c9ac793e636b20830844f97d43d009799e6

    • Size

      432KB

    • MD5

      8dcf664354030881725bcb5abbccac5b

    • SHA1

      05acf9a3ee60f8fcd744ac771a8d6ad9bae3a64d

    • SHA256

      2b9f6c43af9b8fd9e6186a9218b19c9ac793e636b20830844f97d43d009799e6

    • SHA512

      3d22c3b0c4eca1c96a1903b2144ea1f44b57e2e2953d772a605427718845e1b6ecaa0af9ae6f3261b01d9f96d79db26011641133a1414231f7edb7ed19c7c242

    • SSDEEP

      6144:eFUCmZqoFWC6xyWVoY7ZoEpOkF4ERaklY4vFBRZ/kPX++S0/Udqqad2zRwBt6X:uUCmZiClWj7ZNokWnkl55yPu30/UAq+

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks