General

  • Target

    2c2425566fcd87117e4d363ff6a330a6.zip

  • Size

    300KB

  • Sample

    240903-amka1s1flq

  • MD5

    3d5eab8b7274a50b84de3dd197358e07

  • SHA1

    85dadae718cb14ccb19cfdb7e51f87a26ff65dae

  • SHA256

    715d21999c52b3e076edd567573eae9af8081a00f515c086ee81be1b7c9f4f9a

  • SHA512

    a71ca431d70feb9f62e7598655ef013f608d70a454bef18593966d83fc463a0ca4a4f1426f5dcca0cc74d2866db6b26571a7802ff717f2a0c08800bbef965015

  • SSDEEP

    6144:KbpUcey2TY66IbFfYpfTGsX4P+GOPqw84ZIVgTRRoMhNK:Kbpv8TYwFebOPtOl8bCJhNK

Score
10/10

Malware Config

Targets

    • Target

      a308d23779559e284376937299962fd2cf7e595c88f9d4f475c5cc243c98800e

    • Size

      432KB

    • MD5

      2c2425566fcd87117e4d363ff6a330a6

    • SHA1

      531a55daeb7a32b5854bdbe3abe2ac2f099a77e4

    • SHA256

      a308d23779559e284376937299962fd2cf7e595c88f9d4f475c5cc243c98800e

    • SHA512

      1fcb7341202d3a40cc0d4a728da7aa82f33e7de228b1560c9ab7eb90f43bb1323cdcf0c6b9b30fbff42b13120baddb6f02b6706fd192c3381a2f0b7717c5fc1f

    • SSDEEP

      6144:9FUCmZqoFWC6xGgk7P9p+Qquq73Ad+nfydBTtMNUqs3BIxWMDJFmvwTOAZP07VSc:XUCmZiCpgu6Qd+aDmNs3BSFmYJOc

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks