General

  • Target

    bc5e8e9b72bf9c30accef0a83e8366d0N.exe

  • Size

    798KB

  • Sample

    240831-sx5c2s1dkr

  • MD5

    bc5e8e9b72bf9c30accef0a83e8366d0

  • SHA1

    baeaf1dbf728ccaa6106be4833c7b604bfad1d2b

  • SHA256

    8a591155989d755b6a72f1f829d2aa1fcc4de8f89dce646cc4cde6ee7304de8b

  • SHA512

    9a7fe252099846fefecc15a9f6d2df33e5cb53917563fda6b7ce0f1c495549becafcfca676e243443ff3b48d8924dbe2c4d3f6b764cef71f985ea21343be9943

  • SSDEEP

    12288:3uypA23ESwGRwg3TBPi7BvmZmKZkxE9LUBB61FNIAhoJDPdRnz:eyy23p+WTBmvUmKZkx3PQIAhkzdRz

Malware Config

Targets

    • Target

      bc5e8e9b72bf9c30accef0a83e8366d0N.exe

    • Size

      798KB

    • MD5

      bc5e8e9b72bf9c30accef0a83e8366d0

    • SHA1

      baeaf1dbf728ccaa6106be4833c7b604bfad1d2b

    • SHA256

      8a591155989d755b6a72f1f829d2aa1fcc4de8f89dce646cc4cde6ee7304de8b

    • SHA512

      9a7fe252099846fefecc15a9f6d2df33e5cb53917563fda6b7ce0f1c495549becafcfca676e243443ff3b48d8924dbe2c4d3f6b764cef71f985ea21343be9943

    • SSDEEP

      12288:3uypA23ESwGRwg3TBPi7BvmZmKZkxE9LUBB61FNIAhoJDPdRnz:eyy23p+WTBmvUmKZkx3PQIAhkzdRz

    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Enterprise v15

Tasks