General

  • Target

    d218907ba472e8de39e31c58b9d647bc.zip

  • Size

    300KB

  • Sample

    240831-n4xvbssamq

  • MD5

    ab404005925cab544f355edda9cadbe7

  • SHA1

    7ca6002ae0e7c1c949666dcd9dc8003f41d8ea08

  • SHA256

    9da97e038fae835adccc97f6648cb271d623394618ed137b7e73d932cb2de2b8

  • SHA512

    92c37ebec88128d233712b4c5530ff7c47070660f87b599d3529a6d2560c87ed2ffd62ea31cd953615fa9de925e36964b8cb2500e5b8677766ec08d64eeb12e6

  • SSDEEP

    6144:a19JVDMS8dgrV9+T7n87yXbDUrWWvFuEE1I7LlN7FPLxjorb6A:a19LDMSogrVq8d9+qXlLRor+A

Score
10/10

Malware Config

Targets

    • Target

      84c83d23f65d692e86e949b57f120d221ca39ba54587923763144442676002d7

    • Size

      432KB

    • MD5

      d218907ba472e8de39e31c58b9d647bc

    • SHA1

      64c18034f6f444a24e4c0ee06608d88884ab02ea

    • SHA256

      84c83d23f65d692e86e949b57f120d221ca39ba54587923763144442676002d7

    • SHA512

      7a790ae0fb090eab77ced1291502344340094d137720bb38564cb8eeb1d46bc9d4739dbdeec84d8c2d3b19133d77d06513e0ecec04419c40db99441097be553b

    • SSDEEP

      6144:7FUCmZqoFWC6xvQGVRtg57hlWbhqc+hfwGdBYEyj9V93TyUmd:xUCmZiCnGRgphlzxuWB09XXmd

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks