General

  • Target

    e0176e58b893c385b835ca36b3bed28a_JaffaCakes118

  • Size

    432KB

  • Sample

    240914-nmqppasbnc

  • MD5

    e0176e58b893c385b835ca36b3bed28a

  • SHA1

    4974cabdc98da2576ca4d48f43a2a853f38b0d65

  • SHA256

    9dbe2f488405ecdfb8b24698b44207a5ab7554f43147edc9a9ac867311a6d300

  • SHA512

    b625343257c5c3d0945e440210fbecf00ca23a47e377a5d878d9ddbe8f0ec9b34c2d0599baf6fa86b08fdabe3af46daf8d3062bed2196cc85be5697004e4f20d

  • SSDEEP

    12288:yUCmZiCewmyQvdRCHHZZFrvbZ+C/q4NoNMy8IcZP+MEgOW:4CrmFHOHZln/q4NrIcI6

Score
10/10

Malware Config

Targets

    • Target

      e0176e58b893c385b835ca36b3bed28a_JaffaCakes118

    • Size

      432KB

    • MD5

      e0176e58b893c385b835ca36b3bed28a

    • SHA1

      4974cabdc98da2576ca4d48f43a2a853f38b0d65

    • SHA256

      9dbe2f488405ecdfb8b24698b44207a5ab7554f43147edc9a9ac867311a6d300

    • SHA512

      b625343257c5c3d0945e440210fbecf00ca23a47e377a5d878d9ddbe8f0ec9b34c2d0599baf6fa86b08fdabe3af46daf8d3062bed2196cc85be5697004e4f20d

    • SSDEEP

      12288:yUCmZiCewmyQvdRCHHZZFrvbZ+C/q4NoNMy8IcZP+MEgOW:4CrmFHOHZln/q4NrIcI6

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks