General

  • Target

    e15569e9f412662224f745c334f6d789_JaffaCakes118

  • Size

    416KB

  • Sample

    240915-apt81avhjp

  • MD5

    e15569e9f412662224f745c334f6d789

  • SHA1

    6f6cb103c459f72c3bb4ab7ec620c8e1a2dfb99e

  • SHA256

    9e406cc2518afb56d3685bbb6747a06ca270042aacbb504f0c0b3d4bc7b49a5f

  • SHA512

    78caceae7572cd5000fcea6ac8f9cdc72ee6395080af898c224f4362163fb7c734f2bcdb95bdc4517a49be512269779a07873836dff981c9f57bdb8cfca4005c

  • SSDEEP

    6144:P0EYFk+Y4ct45tmwgceU/OqtISpkG0iYxnuyA7J4EhvyHRckaxUI3YLAja9:PEK6g2GqtIu4n8FTyHOXxaAjY

Score
10/10

Malware Config

Targets

    • Target

      e15569e9f412662224f745c334f6d789_JaffaCakes118

    • Size

      416KB

    • MD5

      e15569e9f412662224f745c334f6d789

    • SHA1

      6f6cb103c459f72c3bb4ab7ec620c8e1a2dfb99e

    • SHA256

      9e406cc2518afb56d3685bbb6747a06ca270042aacbb504f0c0b3d4bc7b49a5f

    • SHA512

      78caceae7572cd5000fcea6ac8f9cdc72ee6395080af898c224f4362163fb7c734f2bcdb95bdc4517a49be512269779a07873836dff981c9f57bdb8cfca4005c

    • SSDEEP

      6144:P0EYFk+Y4ct45tmwgceU/OqtISpkG0iYxnuyA7J4EhvyHRckaxUI3YLAja9:PEK6g2GqtIu4n8FTyHOXxaAjY

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks