General

  • Target

    cc60e8d3a2fcc7bd5e26e1e738586079_JaffaCakes118

  • Size

    432KB

  • Sample

    240831-hjn4ss1bjk

  • MD5

    cc60e8d3a2fcc7bd5e26e1e738586079

  • SHA1

    73ff3fce9db4241f2e3fdaa4f3bad6eb6cd11a01

  • SHA256

    0128733574f1262d2479e390a6fd6b7c731341a139b3cb4c0e7249136f619e95

  • SHA512

    b1506fe9b32badf59969020d371f4d617b8a802f19b09b9eaeb40190915e82a47adf960bf8f23a9c3a436a47b403287bdce93b0a6dc11fdad7b97fec05aa6e51

  • SSDEEP

    6144:ZFUCmZqoFWC6xyoNf015ZJPvqg44Dc03k8jlZmpMDNKNcsCYPQtNq0X8WGtbJCxG:LUCmZiCdop01DJx44DcwZrKdCY4/L58

Score
10/10

Malware Config

Targets

    • Target

      cc60e8d3a2fcc7bd5e26e1e738586079_JaffaCakes118

    • Size

      432KB

    • MD5

      cc60e8d3a2fcc7bd5e26e1e738586079

    • SHA1

      73ff3fce9db4241f2e3fdaa4f3bad6eb6cd11a01

    • SHA256

      0128733574f1262d2479e390a6fd6b7c731341a139b3cb4c0e7249136f619e95

    • SHA512

      b1506fe9b32badf59969020d371f4d617b8a802f19b09b9eaeb40190915e82a47adf960bf8f23a9c3a436a47b403287bdce93b0a6dc11fdad7b97fec05aa6e51

    • SSDEEP

      6144:ZFUCmZqoFWC6xyoNf015ZJPvqg44Dc03k8jlZmpMDNKNcsCYPQtNq0X8WGtbJCxG:LUCmZiCdop01DJx44DcwZrKdCY4/L58

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks