General

  • Target

    e00ffd840997c1c8f5d2d3e29f66627c_JaffaCakes118

  • Size

    416KB

  • Sample

    240914-m9nyya1fkc

  • MD5

    e00ffd840997c1c8f5d2d3e29f66627c

  • SHA1

    a957c0d09f8017f0c77092286cb258df5b4152e5

  • SHA256

    83a66ca0227112dfeadbc07f4ca9a2b70797396b33b3b504c94810f5889768b2

  • SHA512

    790d4fc879f62033531030e28fd876b29f62997444e2ed9bcf04dde50af8d2b1647988bd07b34c69b7176fa05150009b54f30605a84ff3b260c5eecb3d92a9ea

  • SSDEEP

    6144:kE1gzo38/zGfWEG3zaAeeGTNuxT7gYWqnqQZNXl4c50JJ91E0BlWPMCZcJ:kWgvyfGySon7kCnJJwMeC

Score
10/10

Malware Config

Targets

    • Target

      e00ffd840997c1c8f5d2d3e29f66627c_JaffaCakes118

    • Size

      416KB

    • MD5

      e00ffd840997c1c8f5d2d3e29f66627c

    • SHA1

      a957c0d09f8017f0c77092286cb258df5b4152e5

    • SHA256

      83a66ca0227112dfeadbc07f4ca9a2b70797396b33b3b504c94810f5889768b2

    • SHA512

      790d4fc879f62033531030e28fd876b29f62997444e2ed9bcf04dde50af8d2b1647988bd07b34c69b7176fa05150009b54f30605a84ff3b260c5eecb3d92a9ea

    • SSDEEP

      6144:kE1gzo38/zGfWEG3zaAeeGTNuxT7gYWqnqQZNXl4c50JJ91E0BlWPMCZcJ:kWgvyfGySon7kCnJJwMeC

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks