General

  • Target

    cd6f0d024cb33803b0c1b25bfc600917_JaffaCakes118

  • Size

    416KB

  • Sample

    240831-xzjxca1alh

  • MD5

    cd6f0d024cb33803b0c1b25bfc600917

  • SHA1

    2ea47a10ec7589fd620757e3cb6401f06e584775

  • SHA256

    2ea7c79a6d72d7ecf577a1267ea78ef6847534a313bb31cd9f6d3bf1ce47220a

  • SHA512

    b81fc4b982af874d391df8bab69b351a634b240a2d4bd07940b299410feaddb3b3f94c2eda5b89ae005ee4aec11d4bbfedbc133c171f340fadcc7b933ef10701

  • SSDEEP

    6144:fNB5mFytJPrXj1dj8PYISDc/h7J/XUdAtYyKWFuXja3pfGyGvOCItjQ:fNB2yT5I9/XEAGvWF8j+m

Score
10/10

Malware Config

Targets

    • Target

      cd6f0d024cb33803b0c1b25bfc600917_JaffaCakes118

    • Size

      416KB

    • MD5

      cd6f0d024cb33803b0c1b25bfc600917

    • SHA1

      2ea47a10ec7589fd620757e3cb6401f06e584775

    • SHA256

      2ea7c79a6d72d7ecf577a1267ea78ef6847534a313bb31cd9f6d3bf1ce47220a

    • SHA512

      b81fc4b982af874d391df8bab69b351a634b240a2d4bd07940b299410feaddb3b3f94c2eda5b89ae005ee4aec11d4bbfedbc133c171f340fadcc7b933ef10701

    • SSDEEP

      6144:fNB5mFytJPrXj1dj8PYISDc/h7J/XUdAtYyKWFuXja3pfGyGvOCItjQ:fNB2yT5I9/XEAGvWF8j+m

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks