General

  • Target

    27c3c71ae2668a94423a8b62935af9d9.zip

  • Size

    293KB

  • Sample

    240901-tpd2kawdrg

  • MD5

    e044110089bff8f8cfe10530e094a3fe

  • SHA1

    fdd4eceaeda359f221e8b29f5d39befb13135ffc

  • SHA256

    477a07c22512ade5f328fe8648e854f58fdb780ff2a3736f179610872b01aa20

  • SHA512

    f6325820e769c89dc66e3b29fc36c9457d037da138b46d363ad29e523912fa73d60d9d31e838bbadd51fe16b264a685595cde472dcdc9ba1f7ce2286f82d9dad

  • SSDEEP

    6144:PF1s4SOyI56OYkLOQCveuA76Qvt9ca842eRTfJX2CWR+oI6:d15kTkLid25thf92L

Score
10/10

Malware Config

Targets

    • Target

      94cc76263e89da07babac5fcd203e2e4d45a080a038138feaf516a0efc276bb0

    • Size

      416KB

    • MD5

      27c3c71ae2668a94423a8b62935af9d9

    • SHA1

      a81e966770805ac711c27d41703bdfb22fb8d155

    • SHA256

      94cc76263e89da07babac5fcd203e2e4d45a080a038138feaf516a0efc276bb0

    • SHA512

      06aceb73c715981302893feb6d4a1941f18dcc4b3e515ca214eb07a123d82211a3973e8c95b53a24e675ac24819c8c892be402a723f811978a17d61a7de77263

    • SSDEEP

      6144:mPXOMLURz8q802Koi1uQId2eH7awQl4S6lKGzf3sVBCqgiecB5ecbD4DTF:mPeMiw+oxrbkGS6l1z6gbcB5n+F

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks