General

  • Target

    9c388b450d20f0b42c5ed2029a01899a.zip

  • Size

    300KB

  • Sample

    240901-lhtjnsxeme

  • MD5

    7cf3d712bd52d9e686d39047054685ba

  • SHA1

    b51e1fb9e097a252e0157928f69b7f3e80774f73

  • SHA256

    d4b79ca12a5af49fae4754bb2148ffe6bd10f9df9d634f2ffbc5821b4d6c3df2

  • SHA512

    47e9e93c7840718b54ca15dc3b000b3c11bd34a642e6ccf65e7d5bc8a960fa930be3831e8bbb1239aa86b1bd9f956c3c84e8b1d1630e32cad24521bd2c316d8e

  • SSDEEP

    6144:w0ozAPkvOyM3kq1wOGygKMu0shKjoQyA8OzRcsz2d8t+q1wuYiXrXJ56O:ZozayMCOKKMdsNQd8fsqLqeGtJ

Score
10/10

Malware Config

Targets

    • Target

      6fe7e11bba8b8868a4130ae1e6afd296ac7bace3de03d20ce9d470d6cd906f83

    • Size

      432KB

    • MD5

      9c388b450d20f0b42c5ed2029a01899a

    • SHA1

      13606731c1c19d24f39adc96e996bd3e5bbf26dd

    • SHA256

      6fe7e11bba8b8868a4130ae1e6afd296ac7bace3de03d20ce9d470d6cd906f83

    • SHA512

      fe0b1029f10bc4088ccf912eee65c88ba5e6d62bf75a2f29aec3f291c34989d91eeb71db16e757e11da66ac707ccee98e474bc71d6489dc05d4c14c61c401c7b

    • SSDEEP

      6144:wFUCmZqoFWC6x6lzF6cnjKwa9qgl/A37b2fZwSYUI0ZxA9XxAgsBhSRsuR3tWJHz:cUCmZiC31FjK2rbpgZx8Xx2kRvtWJ7/

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks