General

  • Target

    ce791970de6c814d0c9762d32c690c23_JaffaCakes118

  • Size

    7.3MB

  • Sample

    240906-day57aseqe

  • MD5

    ce791970de6c814d0c9762d32c690c23

  • SHA1

    1e024e8b2c12fdfaf22f73db33f83d9a69b172be

  • SHA256

    64c38281d63deb27f453ef98ad207e6d9c0f34b8f485a1b11dcba2ffba135e55

  • SHA512

    e346b17a337091e24ac5c46716e8750dd00af7dc91d23fa964278f49172de416b52f4f03d36d84659572f18e88fbd4c6c1dfd9439b4f0ea68b9205d77a023c7b

  • SSDEEP

    98304:DxC3ud6MOIvysiwCQKzo5qphIHVruP3WpF3UdE1hZHEdLFsmil+:oGQFMkhgJuP32+dmhZk/6

Malware Config

Targets

    • Target

      ce791970de6c814d0c9762d32c690c23_JaffaCakes118

    • Size

      7.3MB

    • MD5

      ce791970de6c814d0c9762d32c690c23

    • SHA1

      1e024e8b2c12fdfaf22f73db33f83d9a69b172be

    • SHA256

      64c38281d63deb27f453ef98ad207e6d9c0f34b8f485a1b11dcba2ffba135e55

    • SHA512

      e346b17a337091e24ac5c46716e8750dd00af7dc91d23fa964278f49172de416b52f4f03d36d84659572f18e88fbd4c6c1dfd9439b4f0ea68b9205d77a023c7b

    • SSDEEP

      98304:DxC3ud6MOIvysiwCQKzo5qphIHVruP3WpF3UdE1hZHEdLFsmil+:oGQFMkhgJuP32+dmhZk/6

    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Enterprise v15

Tasks