General

  • Target

    8f77b364553c0fb1e1c937ea8d1d0865.zip

  • Size

    300KB

  • Sample

    240901-slz9ysvejc

  • MD5

    ea4f20e19d68ad2b8cb5c001cc76a90a

  • SHA1

    d17cf90c72a90fb00b724357db99913e74e812c5

  • SHA256

    ffea7879f7261f170e9d7c7d8a046803730caf0fb8a6278d590788561806ec04

  • SHA512

    92847d0d36faefdd3e6b18850846223a61e8ef48b53c8bbbcea1c96df69061e4ac4185243081fe135ed9900a1692424019e6347246246be13543489984f83dfa

  • SSDEEP

    6144:OzH7UOxkWjF3y7t1+zfXoPpbP11Rrh0+Xm3fjdQFVyO8b9Lnv2wF2Ybfs:Oz7UOW/+j2pbP1TXZF8LvwYrs

Score
10/10

Malware Config

Targets

    • Target

      7dfb28dd9da6f2411ab517d20bb1122840a4169f2deb30c6d954d0767291a20a

    • Size

      432KB

    • MD5

      8f77b364553c0fb1e1c937ea8d1d0865

    • SHA1

      d82af3714922c3e0187067d3e38a9ff664f11c9f

    • SHA256

      7dfb28dd9da6f2411ab517d20bb1122840a4169f2deb30c6d954d0767291a20a

    • SHA512

      958da45429e7f71eb308ed1eeb9d33cb65d443588fc64a1eaa5156ef15974a42cb2a802bbc3d69b6623980c4124cd6ae96ba95b4b3ca1c9a06375b6f7684d650

    • SSDEEP

      12288:QUCmZiCKqYAiowc4mDAvSyepVifYtVqNEaOu:WCKqXiowcZDkS9ifYfqdz

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks