General
-
Target
aa6d3c53da2425fe481128e54add7a60_JaffaCakes118
-
Size
397KB
-
Sample
240614-svpjtaweqe
-
MD5
aa6d3c53da2425fe481128e54add7a60
-
SHA1
e780e7d49242202285df4be767140af93a786c98
-
SHA256
7506221b62c1e3ceb3ac306edfb8773acd16282f986e4d327a71d4eb50a42c12
-
SHA512
97aeaf188e355b9bc49eaadbb394a7fd9ab94fafb51d01cbdc615625cbbfbc196a6d58441f1ba00112a06b41d3e3e4f2372e1e91ec27b14d98bf35723490b593
-
SSDEEP
6144:MLy84u9nSO2GjZkD10BIY3rb1YfBdfpoZ3u/Ht52w6JSeiFPXmI7:Y+u9nx2GjMY3XKfd/H/9Pj7
Malware Config
Targets
-
-
Target
aa6d3c53da2425fe481128e54add7a60_JaffaCakes118
-
Size
397KB
-
MD5
aa6d3c53da2425fe481128e54add7a60
-
SHA1
e780e7d49242202285df4be767140af93a786c98
-
SHA256
7506221b62c1e3ceb3ac306edfb8773acd16282f986e4d327a71d4eb50a42c12
-
SHA512
97aeaf188e355b9bc49eaadbb394a7fd9ab94fafb51d01cbdc615625cbbfbc196a6d58441f1ba00112a06b41d3e3e4f2372e1e91ec27b14d98bf35723490b593
-
SSDEEP
6144:MLy84u9nSO2GjZkD10BIY3rb1YfBdfpoZ3u/Ht52w6JSeiFPXmI7:Y+u9nx2GjMY3XKfd/H/9Pj7
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Modifies Installed Components in the registry
-
Adds Run key to start application
-