General

  • Target

    c8329eb161d6ce580092aa13c210e281.zip

  • Size

    300KB

  • Sample

    240903-t1cymssdla

  • MD5

    c9f05c15fbfe21437bf1915d2afd32ec

  • SHA1

    77b8cc57f937c3847354267bab5b327181c64057

  • SHA256

    addfe67540c2e8c66f1d4e76530582b142b4275c26e0f474124643391778159e

  • SHA512

    468e069fe546a002723210ea6e21629345f85023067e17b265bb6493d4f703c48dde58f4fc440d8f0d22fef30e786b67d1c75bbeea2dec1dbc9525c659413567

  • SSDEEP

    6144:9ocDoOstfVbTh9+A4gCfSXHf9WBPO7CNk7uYI/D4Oy5XxZVDUA:9DD+/3cgCo/sO7v7VIrGx7r

Score
10/10

Malware Config

Targets

    • Target

      7f1841df0bd1d41d915c14ff71c9f6bf3f7a607e98ace511845b4ab0c5c129a5

    • Size

      432KB

    • MD5

      c8329eb161d6ce580092aa13c210e281

    • SHA1

      243e2101a3a934ac8d47f75bd8a512a9ca6bc7a6

    • SHA256

      7f1841df0bd1d41d915c14ff71c9f6bf3f7a607e98ace511845b4ab0c5c129a5

    • SHA512

      4018751abe31940b79118250e2e1077bafca4edb605f8888a89de1f1ad752c54524ccf587d60c3a89a97a24d98a18ed7328f8cf913dc8a0eb20b759275675156

    • SSDEEP

      6144:UFUCmZqoFWC6xsqa27CwNzSctVXeKUGT+iurSP0dq8VQy1+zromw0SsKtP+iD:oUCmZiCC32KUGaiuWYr6oBD92iD

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks