General

  • Target

    dd82cf23bcd8da15b7ad52b767779eeb_JaffaCakes118

  • Size

    416KB

  • Sample

    240913-c8ry4azhke

  • MD5

    dd82cf23bcd8da15b7ad52b767779eeb

  • SHA1

    2075824265a7182e70457b37ca46d117a0c6214b

  • SHA256

    4e0be5ae044a4e6228115b02c6ac59aa925c5c272db61f0c96ecd25889b157a7

  • SHA512

    ef866d2253660510af38073eebf989673d30158fce2d48ec486d8a6f8c853840ed81404282dfd5b30f15108fcade6be5b3c138a6b8af0a893129fe999e9c1f14

  • SSDEEP

    6144:L6PXHQjB4QF8MtRGs76/W9n7hk20AVgaxpyYevs6x9gahtYPTJ5Vl7zeoOrRv/t4:L6Ijj5RGsMW97iHGJyJtx9gYtYTv7fk

Score
10/10

Malware Config

Targets

    • Target

      dd82cf23bcd8da15b7ad52b767779eeb_JaffaCakes118

    • Size

      416KB

    • MD5

      dd82cf23bcd8da15b7ad52b767779eeb

    • SHA1

      2075824265a7182e70457b37ca46d117a0c6214b

    • SHA256

      4e0be5ae044a4e6228115b02c6ac59aa925c5c272db61f0c96ecd25889b157a7

    • SHA512

      ef866d2253660510af38073eebf989673d30158fce2d48ec486d8a6f8c853840ed81404282dfd5b30f15108fcade6be5b3c138a6b8af0a893129fe999e9c1f14

    • SSDEEP

      6144:L6PXHQjB4QF8MtRGs76/W9n7hk20AVgaxpyYevs6x9gahtYPTJ5Vl7zeoOrRv/t4:L6Ijj5RGsMW97iHGJyJtx9gYtYTv7fk

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks