General
-
Target
4545fc10b27ce3bb20b5cf9a41cac84e_JaffaCakes118
-
Size
397KB
-
Sample
240515-j5wlfagf7x
-
MD5
4545fc10b27ce3bb20b5cf9a41cac84e
-
SHA1
fdd3010c7fa4c126dc88b4fff1c2f0f807eecae4
-
SHA256
8817202fda09d9bd88681a85f470400b1a9cc63d147653b230f09ce94c11e2a4
-
SHA512
04c017e983d4740b8aac48e58df0d92356c2efee400a42c312456563b4e236d78b5d242a9e9692d2e343561c69b71fed2b5540b041bda27e8bc5ae7e487f0887
-
SSDEEP
6144:cLy84u9nSO2GjZkD10BIY3rb1YfBdfpoZ3u/Ht52w6JSeiFPXVhP:I+u9nx2GjMY3XKfd/H/9PPP
Malware Config
Targets
-
-
Target
4545fc10b27ce3bb20b5cf9a41cac84e_JaffaCakes118
-
Size
397KB
-
MD5
4545fc10b27ce3bb20b5cf9a41cac84e
-
SHA1
fdd3010c7fa4c126dc88b4fff1c2f0f807eecae4
-
SHA256
8817202fda09d9bd88681a85f470400b1a9cc63d147653b230f09ce94c11e2a4
-
SHA512
04c017e983d4740b8aac48e58df0d92356c2efee400a42c312456563b4e236d78b5d242a9e9692d2e343561c69b71fed2b5540b041bda27e8bc5ae7e487f0887
-
SSDEEP
6144:cLy84u9nSO2GjZkD10BIY3rb1YfBdfpoZ3u/Ht52w6JSeiFPXVhP:I+u9nx2GjMY3XKfd/H/9PPP
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Modifies Installed Components in the registry
-
Adds Run key to start application
-