General
-
Target
00e4fabfd83404b3e1ad05d65fc17a27_JaffaCakes118
-
Size
705KB
-
Sample
240619-2fgebsvcqc
-
MD5
00e4fabfd83404b3e1ad05d65fc17a27
-
SHA1
b7256fbc96f15e639b4a1741d852584d9020032b
-
SHA256
40d1a11c34353c8e37512563185f18f2352c0f75ef7c974b074ca175c3b32039
-
SHA512
3d95930a99799400bcd29f4200c1afa099d3a6f455a8c389fc973e046ef244799aa9e7332402ff0d36ff53a7e2901dca860cb91ede6b3b4e838547ca9bb4111b
-
SSDEEP
12288:PCLj8ZfR8pV5DfQKsMkZkYnzW/0pf06qiRtF3Z4mxx50MHoTAFby:IjKfR8Zfl2zW/0pvtQmX5Kh
Static task
static1
Behavioral task
behavioral1
Sample
00e4fabfd83404b3e1ad05d65fc17a27_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
00e4fabfd83404b3e1ad05d65fc17a27_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
00e4fabfd83404b3e1ad05d65fc17a27_JaffaCakes118
-
Size
705KB
-
MD5
00e4fabfd83404b3e1ad05d65fc17a27
-
SHA1
b7256fbc96f15e639b4a1741d852584d9020032b
-
SHA256
40d1a11c34353c8e37512563185f18f2352c0f75ef7c974b074ca175c3b32039
-
SHA512
3d95930a99799400bcd29f4200c1afa099d3a6f455a8c389fc973e046ef244799aa9e7332402ff0d36ff53a7e2901dca860cb91ede6b3b4e838547ca9bb4111b
-
SSDEEP
12288:PCLj8ZfR8pV5DfQKsMkZkYnzW/0pf06qiRtF3Z4mxx50MHoTAFby:IjKfR8Zfl2zW/0pvtQmX5Kh
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-