General

  • Target

    ce8c33064b067902b8078e7941e13da8_JaffaCakes118

  • Size

    416KB

  • Sample

    240906-d2pe3atejn

  • MD5

    ce8c33064b067902b8078e7941e13da8

  • SHA1

    57428bd7a8fdb92cb32657f79a8e480bbcec5b38

  • SHA256

    3e8c84323bdd46d9087c0342ee1b91057db2efe41768e71673693629c2ad2e80

  • SHA512

    ef9225448ea9bfbad42e79d02109a5d25fd58a21a8f85e2375ea7e45e984298ccf22cd026450984e342e287a4ec1f6d8a7e5aa7724a9222c19182f5f772fd18e

  • SSDEEP

    6144:ktq+gPjRWhJejD6gu1VT/mxtQBsWgT49s+yEA1BfHbv5qKY4JK19k0C:ktNgNwwjqTu7T4CEAfldXJyC0

Score
10/10

Malware Config

Targets

    • Target

      ce8c33064b067902b8078e7941e13da8_JaffaCakes118

    • Size

      416KB

    • MD5

      ce8c33064b067902b8078e7941e13da8

    • SHA1

      57428bd7a8fdb92cb32657f79a8e480bbcec5b38

    • SHA256

      3e8c84323bdd46d9087c0342ee1b91057db2efe41768e71673693629c2ad2e80

    • SHA512

      ef9225448ea9bfbad42e79d02109a5d25fd58a21a8f85e2375ea7e45e984298ccf22cd026450984e342e287a4ec1f6d8a7e5aa7724a9222c19182f5f772fd18e

    • SSDEEP

      6144:ktq+gPjRWhJejD6gu1VT/mxtQBsWgT49s+yEA1BfHbv5qKY4JK19k0C:ktNgNwwjqTu7T4CEAfldXJyC0

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks