General

  • Target

    4c888d4000442a412ddd3741bb73ba05.zip

  • Size

    300KB

  • Sample

    240901-h1wvzavbpr

  • MD5

    8d7c0cd4721dbe6d999348c966e17673

  • SHA1

    c2907110f71ae0980269cdae4e3c38926873159c

  • SHA256

    499fc5576b65837f514298ee1c54efff8e2bfcb274f40259e3b198ce8b4a8781

  • SHA512

    6df812062e7eca321d39c1b67f237dfc084d9f32f9e7291cf052267e0451fda610b40f900edec6554f50871396f9b39a6ac773134005ca5bdddb41602813da49

  • SSDEEP

    6144:3NwF77IR1r7XRLeNvuj5ZxwYdM+gt6jAcIrGsOmydZ+bUk9dJE1j/TOH:3Nwx7IjXR6wxw2gtQe9OmQZ+rdMA

Score
10/10

Malware Config

Targets

    • Target

      8a58dd6939bf56ee3d247705cfbcea40f98f5c599fdabb0e24f375c5ca47da4d

    • Size

      432KB

    • MD5

      4c888d4000442a412ddd3741bb73ba05

    • SHA1

      d98176cb2b417666c41a7ca3b329a8aad36234ef

    • SHA256

      8a58dd6939bf56ee3d247705cfbcea40f98f5c599fdabb0e24f375c5ca47da4d

    • SHA512

      a8985c0c43bfd46a0bf2f3464a39ddd07aae6913175ee7436c319b8cebed18fe5385acad6c801d546f1eaa1c8a6c590e258604fd4e28ba94c68dee8df2a4e2de

    • SSDEEP

      12288:yUCmZiCQeudA7dFKmj+GGK/YnLDrTqxaNxpT:4CQeuduK8+GGKAnvXqxaDJ

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks