General

  • Target

    d1077c32f9f1acd3af53d4169243ad4b_JaffaCakes118

  • Size

    416KB

  • Sample

    240907-elcxrsthjc

  • MD5

    d1077c32f9f1acd3af53d4169243ad4b

  • SHA1

    29a2a0d7f4ddfd030aea656a646568fbd924bc1c

  • SHA256

    d9f395d4c4b79835a5c50ce0cca9d4fdec9dbdf09facc12f4902cfdfb3ca3fd0

  • SHA512

    e5979235e243d0485a00d872ab0e1bf3308c065809644575b381e63fca1ff139f86cf64bd0fff48c513941487109f50ec1bd9beb7946f326d9681a418ac1e6b0

  • SSDEEP

    6144:k1FdgcwANJrdyhdYbVkNMsEetuuctI5rm5KsClFW1YxkIupUfyBq:kTtNLpyhdYbsMbetitUrm5KsGL1F

Score
10/10

Malware Config

Targets

    • Target

      d1077c32f9f1acd3af53d4169243ad4b_JaffaCakes118

    • Size

      416KB

    • MD5

      d1077c32f9f1acd3af53d4169243ad4b

    • SHA1

      29a2a0d7f4ddfd030aea656a646568fbd924bc1c

    • SHA256

      d9f395d4c4b79835a5c50ce0cca9d4fdec9dbdf09facc12f4902cfdfb3ca3fd0

    • SHA512

      e5979235e243d0485a00d872ab0e1bf3308c065809644575b381e63fca1ff139f86cf64bd0fff48c513941487109f50ec1bd9beb7946f326d9681a418ac1e6b0

    • SSDEEP

      6144:k1FdgcwANJrdyhdYbVkNMsEetuuctI5rm5KsClFW1YxkIupUfyBq:kTtNLpyhdYbsMbetitUrm5KsGL1F

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks