General

  • Target

    cecac83225c508f0b51acce343278c85_JaffaCakes118

  • Size

    416KB

  • Sample

    240906-gbe1gsyfqr

  • MD5

    cecac83225c508f0b51acce343278c85

  • SHA1

    458223eacc28883dbe97afeea3a5162754995f6b

  • SHA256

    2b5af9bc06ddc21e447f54eab58c08048f61da892ab5e5ffac44120e0e02a23a

  • SHA512

    1a34e852897523ab969aa04210b0ce200168dd8cc47e58478262adc5639676cad771ebb7e3cab927f2853004edaafa7a13a64b0bef3c8361e6f949013353618d

  • SSDEEP

    6144:g+hHihTdCsOVNQndSrO+SIlp7/WNX7x2EwcY8UiIeYUbQYVHUz:g+hqTdCsKNO0qIlp7+x9xhIS2

Score
10/10

Malware Config

Targets

    • Target

      cecac83225c508f0b51acce343278c85_JaffaCakes118

    • Size

      416KB

    • MD5

      cecac83225c508f0b51acce343278c85

    • SHA1

      458223eacc28883dbe97afeea3a5162754995f6b

    • SHA256

      2b5af9bc06ddc21e447f54eab58c08048f61da892ab5e5ffac44120e0e02a23a

    • SHA512

      1a34e852897523ab969aa04210b0ce200168dd8cc47e58478262adc5639676cad771ebb7e3cab927f2853004edaafa7a13a64b0bef3c8361e6f949013353618d

    • SSDEEP

      6144:g+hHihTdCsOVNQndSrO+SIlp7/WNX7x2EwcY8UiIeYUbQYVHUz:g+hqTdCsKNO0qIlp7+x9xhIS2

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks