General

  • Target

    d70972855c5090d36da690f23a763850_JaffaCakes118

  • Size

    432KB

  • Sample

    240909-y6pa3szfmb

  • MD5

    d70972855c5090d36da690f23a763850

  • SHA1

    389c03cd139c6f3901ace2a68647cb0bd3c45df4

  • SHA256

    41775e9f8a418c9264317fe25fa61dbbc7e73462fc14ce9ec58ef52da567cf97

  • SHA512

    67a092f037a650edeb76ce575fa8f8f98da31d32e3788efa791b0cc98f8a5d789ca3fc9826eda07f81df6a76ae2d80edd9bedac74ec893c95546e5dddb315851

  • SSDEEP

    12288:cUCmZiCxB2UYJBtorvbZ+C/q4NoNMy8IcZP+MEgOW:6CL2Sn/q4NrIcI6

Score
10/10

Malware Config

Targets

    • Target

      d70972855c5090d36da690f23a763850_JaffaCakes118

    • Size

      432KB

    • MD5

      d70972855c5090d36da690f23a763850

    • SHA1

      389c03cd139c6f3901ace2a68647cb0bd3c45df4

    • SHA256

      41775e9f8a418c9264317fe25fa61dbbc7e73462fc14ce9ec58ef52da567cf97

    • SHA512

      67a092f037a650edeb76ce575fa8f8f98da31d32e3788efa791b0cc98f8a5d789ca3fc9826eda07f81df6a76ae2d80edd9bedac74ec893c95546e5dddb315851

    • SSDEEP

      12288:cUCmZiCxB2UYJBtorvbZ+C/q4NoNMy8IcZP+MEgOW:6CL2Sn/q4NrIcI6

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks