General
-
Target
013929c6ec9f2340af4f4f0a8c1e3ac3_JaffaCakes118
-
Size
356KB
-
Sample
240619-3n9ara1hjp
-
MD5
013929c6ec9f2340af4f4f0a8c1e3ac3
-
SHA1
9f8e1e2a15885e99119e66b388b2e56cd340f583
-
SHA256
e0306403753079987e99e9d2940a03880b2d0519dd38a3449c65751d81365322
-
SHA512
99edb8156a740b499e45901c113ae192053f214514cf7095d98626c25ffcad99a0dc1b6fe2933508f44ec469568486e182a06c4f1010df00ef50076f379c7031
-
SSDEEP
6144:zgtbjoS6ziXHgv8SOdyjT67oEFFC02yIJP+0EXhpR2U0jCb/hIqnSydZ9Pl0BtSa:zgtbMS6+wv8dzF2DP+VpaCbhIt8hl0Ka
Static task
static1
Behavioral task
behavioral1
Sample
013929c6ec9f2340af4f4f0a8c1e3ac3_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
013929c6ec9f2340af4f4f0a8c1e3ac3_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
013929c6ec9f2340af4f4f0a8c1e3ac3_JaffaCakes118
-
Size
356KB
-
MD5
013929c6ec9f2340af4f4f0a8c1e3ac3
-
SHA1
9f8e1e2a15885e99119e66b388b2e56cd340f583
-
SHA256
e0306403753079987e99e9d2940a03880b2d0519dd38a3449c65751d81365322
-
SHA512
99edb8156a740b499e45901c113ae192053f214514cf7095d98626c25ffcad99a0dc1b6fe2933508f44ec469568486e182a06c4f1010df00ef50076f379c7031
-
SSDEEP
6144:zgtbjoS6ziXHgv8SOdyjT67oEFFC02yIJP+0EXhpR2U0jCb/hIqnSydZ9Pl0BtSa:zgtbMS6+wv8dzF2DP+VpaCbhIt8hl0Ka
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-