General

  • Target

    31f7e1170c082158c054d178a2df155e.zip

  • Size

    300KB

  • Sample

    240901-feznma1hrp

  • MD5

    4818da23b912737bbe15f2b20f317d52

  • SHA1

    3e6efece992bd92573aaee366389807bfc56798a

  • SHA256

    45cfb1bad9a17eb8675806b9f3051ebd7ecde281759f04982ece790955b1706a

  • SHA512

    d53de831a5eb604942ed0c6722919eeca7f9f1e773128095e523ad9656597feadc941ebbbab77208ee12fd4c41d437921d848a6bf1d55d20d787db2fa3c1728c

  • SSDEEP

    6144:vxIdZ7lZ0NHjIOdKr7rXsTb3L9KAMgp95vrHr+ymUo2xASPZfNQKXA:vxIdZ41hgPsv7JrHr+JShmKXA

Score
10/10

Malware Config

Targets

    • Target

      4e62a3e83dca25bb4bd6b88c08862120bbc2934b1cfcdb34cc1c48d88d3b4bbd

    • Size

      432KB

    • MD5

      31f7e1170c082158c054d178a2df155e

    • SHA1

      2fdb42ca2f83c1740e4eba627c66ccf7b5ce050f

    • SHA256

      4e62a3e83dca25bb4bd6b88c08862120bbc2934b1cfcdb34cc1c48d88d3b4bbd

    • SHA512

      f9c7489320e9fe3b5d60a20296ee5e4c8fc40e13431087f2ef709b45ff87508c5b2619f5ad7dedc3c160728b0be0b96b140da337c79e0a096b8816a302bf8661

    • SSDEEP

      12288:9UCmZiCN4AqiL4DoR3+3cy0Qz/c9O0R3/:vCuAqBIO3cK+

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks