General

  • Target

    cf41a686e63b173060db55525b7441ea_JaffaCakes118

  • Size

    416KB

  • Sample

    240906-lqny6azcpg

  • MD5

    cf41a686e63b173060db55525b7441ea

  • SHA1

    6934b432401490c16f3ab94d62a9a83a25332e9a

  • SHA256

    c3e843a114d087c2cb1e5a560b9b2d102a349504db44d6c8a323ac2a050d423b

  • SHA512

    39e102d4dc8b82ffda05da48a572ad47ad66a0fa47995613456931c8b7ba6adf20cb4a53d2c3b7a05396e6f547b75d99f36a35b965d8b03d1160ab6359026367

  • SSDEEP

    6144:yNv9YOMzvCuiroMx3zKMJGh8kCDYsjprbDfhF5V3ONgEox946lzmEZYS5+oj9COL:yNGOGQxjprbDfhsjo46hjYJQ0mN

Score
10/10

Malware Config

Targets

    • Target

      cf41a686e63b173060db55525b7441ea_JaffaCakes118

    • Size

      416KB

    • MD5

      cf41a686e63b173060db55525b7441ea

    • SHA1

      6934b432401490c16f3ab94d62a9a83a25332e9a

    • SHA256

      c3e843a114d087c2cb1e5a560b9b2d102a349504db44d6c8a323ac2a050d423b

    • SHA512

      39e102d4dc8b82ffda05da48a572ad47ad66a0fa47995613456931c8b7ba6adf20cb4a53d2c3b7a05396e6f547b75d99f36a35b965d8b03d1160ab6359026367

    • SSDEEP

      6144:yNv9YOMzvCuiroMx3zKMJGh8kCDYsjprbDfhF5V3ONgEox946lzmEZYS5+oj9COL:yNGOGQxjprbDfhsjo46hjYJQ0mN

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks